Committed to Product Security
ZOLL® is committed to ensuring the safety, effectiveness, and security of its products. We continuously evaluate cybersecurity threats to ensure customers can use our products safely and securely.
Cybersecurity Advisories
Log4j
Apache confirmed that a critical Remote Code Execution vulnerability exists in their Log4j utility (CVE-2021-44228). Log4j is an open source, Java-based logging utility.
ZOLL conducted an evaluation and found indications that no products are impacted. Download ZOLL’s Cyber Security Advisory.
Nucleus
Nucleus RTOS is a real-time operating system (RTOS) used in many different embedded software solutions. Forescout and the Cybersecurity and Infrastructure Security Agency (CISA) issued reports detailing 13 vulnerabilities in the Nucleus Net component.
ZOLL conducted an evaluation and found indications that no products are impacted. Download ZOLL’s Cyber Security Advisory.
Defibrillator Dashboard
Security vulnerabilities were discovered in an older version of ZOLL's Defibrillator Dashboard® software program. These vulnerabilities were resolved in version 2.2.
ZOLL contacted customers to advise them to upgrade to the latest version of Defibrillator Dashboard. Download our 2020 and 2021 customer notifications.
Product-Specific Security Information
ZOLL uses the Manufacturer Disclosure Statement for Medical Device Security (MDS2) to communicate information about the security and privacy characteristics of its devices. The MDS2 is endorsed by the American College of Clinical Engineering (ACCE), ECRI (formerly the Emergency Care Research Institute), the National Electrical Manufacturers Association (NEMA), and the Healthcare Information and Management Systems Society (HIMSS).
ZOLL provides MDS2 forms upon request; please contact your local ZOLL representative if you would like more information.