2 matches found
CVE-2018-18562
CVE-2018-18562 is an OS command injection vulnerability in Roche Accu-Chek Inform II Base Unit / Base Unit Hub and CoaguChek / cobas h232 Handheld Base Unit, before 03.01.04. The root cause is insecure operation allowing authenticated attackers in the adjacent network to execute arbitrary command...
CVE-2018-18561
The CVE concerns Roche Accu-Chek Inform II Base Unit/Base Unit Hub (before 03.01.04) and CoaguChek/cobas h232 Handheld Base Unit (before 03.01.04), where insecure permissions in a service interface allow an authenticated attacker in the adjacent network to execute arbitrary OS commands. The issue...