CVE-2025-12997 — Insecure Direct Object Reference vulnerability in Medtronic CareLink Network which allows an authenticated attacker with access to specific device and user information to submit web requests to an API — CVE Database · The Intelligence Room