CVE-2018-18562

CWE-78: IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMAND ('OS COMMAND INJECTION')
Insecure permissions in a service interface may allow authenticated attackers in the adjacent network to execute arbitrary commands on the operating systems.

Risk Information

  • CVE ID
  • CVE-2018-18562
  • Vendor
  • Roche Diagnostics
  • Product
  • Accu Chek, CoaguChek
  • CVSS v3
  • 8.0