A CVSS v3 base score of 8.0 has been calculated the CVSS vector string is ( AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H).Ĥ.2.3 UNRESTRICTED UPLOAD OF FILE WITH DANGEROUS TYPE CWE-434Ī vulnerability in the software update mechanism allows an attacker in adjacent network to overwrite arbitrary files on the system through a crafted update package.ĬVE-2018-18563 has been assigned to this vulnerability. Insecure permissions in a service interface may allow authenticated attackers in the adjacent network to execute arbitrary commands on the operating systems.ĬVE-2018-18562 has been assigned to this vulnerability.
CoaguChek / cobas h232 Handheld Base Unit – all versions before 03.01.04Ĥ.2.2 IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMAND ('OS COMMAND INJECTION') CWE-78.Accu-Chek Inform II Base Unit / Base Unit Hub – all versions before 03.01.04.A CVSS v3 base score of 6.5 has been calculated the CVSS vector string is ( AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Weak access credentials may enable attackers in the adjacent network to gain unauthorized service access via a service interface.ĬVE-2018-18561 has been assigned to this vulnerability. Accu-Chek Inform II Base Unit NEW with Software 04.00.00 or newer.Including the related base units (BU), base unit hubs and handheld base units (HBU).
0 kommentar(er)
