CVE-2018-18563

CWE-434 : UNRESTRICTED UPLOAD OF FILE WITH DANGEROUS TYPE
A vulnerability in the software update mechanism allows an attacker in adjacent network to overwrite arbitrary files on the system through a crafted update package.

Risk Information

  • CVE ID
  • CVE-2018-18563
  • Vendor
  • Roche Diagnostics
  • Product
  • Accu Chek, CoaguCheck
  • CVSS v3
  • 8.0