CVE-2018-18977

2019-05-0619:14:58

mitre

www.cve.org

7.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.2%

JSON

An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01-15. An attacker may reverse engineer the codebase to extract sensitive data that contributes to the disclosure of medical information of patients utilizing the Ascensia platform. This occurs because of weak obfuscation.

References

depthsecurity.com/blog/medical-exploitation-you-are-now-diabetic