Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-18563 (GCVE-0-2018-18563)
Vulnerability from cvelistv5 – Published: 2018-11-20 19:00 – Updated: 2024-08-05 11:16
VLAI?
EPSS
Summary
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Date Public ?
2018-11-06 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T11:16:00.005Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
},
{
"name": "105843",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/105843"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2018-11-06T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-11-20T18:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
},
{
"name": "105843",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/105843"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-18563",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
},
{
"name": "105843",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/105843"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2018-18563",
"datePublished": "2018-11-20T19:00:00.000Z",
"dateReserved": "2018-10-22T00:00:00.000Z",
"dateUpdated": "2024-08-05T11:16:00.005Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-18563",
"date": "2026-04-24",
"epss": "0.00216",
"percentile": "0.44133"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-18563\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2018-11-20T19:29:00.853\",\"lastModified\":\"2024-11-21T03:56:09.813\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.\"},{\"lang\":\"es\",\"value\":\"Se ha descubierto un problema en Roche Accu-Chek Inform II Instrument en versiones anteriores a la 03.06.00 (n\u00famero de serie inferior a 14000) y 04.x en versiones anteriores a la 04.03.00 (n\u00famero de serie superior a 14000), CoaguChek Pro II en versiones anteriores a la 04.03.00, CoaguChek XS Plus en versiones anteriores a la 03.01.06, CoaguChek XS Pro en versiones anteriores a la 03.01.06, cobas h 232 en versiones anteriores a la 03.01.03 (n\u00famero de serie inferior a KQ0400000 o KS0400000) y cobas h 232 en versiones anteriores a la 04.00.04 (n\u00famero de serie superior a KQ0400000 o KS0400000). El control de acceso incorrecto a un comando del servicio permite que los atacantes en la red adyacente ejecuten c\u00f3digo arbitrario en el sistema mediante un mensaje Poct1-A manipulado.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":9.6,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":6.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":8.3,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":6.5,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-434\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:roche:accu-chek_inform_ii_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"03.06.00\",\"matchCriteriaId\":\"DB351BFB-4024-43CF-9FB3-E11F87C37C33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:roche:accu-chek_inform_ii_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"04.00.00\",\"versionEndExcluding\":\"04.03.00\",\"matchCriteriaId\":\"78B1BA80-7894-4820-BBB5-6CEAB017E125\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:roche:accu-chek_inform_ii:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A997E9CB-50C6-4363-AC6C-F03050FE2CFC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:roche:cobas_h_232_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"03.01.03\",\"matchCriteriaId\":\"F861AB60-6E9A-473E-99C0-23840B8ACC98\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:roche:cobas_h_232_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"04.00.00\",\"versionEndExcluding\":\"04.00.04\",\"matchCriteriaId\":\"3DE420F8-C9A3-4835-BE38-5ED2D2092816\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:roche:cobas_h_232:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32562950-3817-40E3-B252-1288ED9A375F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:roche:coaguchek_pro_ii_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"04.03.00\",\"matchCriteriaId\":\"A390E582-7AC2-4701-BF0C-7C5EDF54A72D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:roche:coaguchek_pro_ii:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44F895BD-8B2C-4737-B86C-565450427410\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:roche:coaguchek_xs_plus_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"03.01.06\",\"matchCriteriaId\":\"5C2C91C0-645D-4411-9E9C-569FE5AD3C56\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:roche:coaguchek_xs_plus:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32B077F7-7D93-4ECD-A542-7977ED81E635\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:roche:coaguchek_xs_pro_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"03.01.06\",\"matchCriteriaId\":\"0F4955E1-A8D5-4EF2-A59A-C7B21050DD34\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:roche:coaguchek_xs_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7658A51C-E540-4EBD-A6F1-CEBC40696842\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/105843\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mitigation\",\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/bid/105843\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\",\"US Government Resource\"]}]}}"
}
}
GHSA-FVC7-CWMQ-HCV2
Vulnerability from github – Published: 2022-05-13 01:50 – Updated: 2022-05-13 01:50
VLAI?
Details
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.
Severity ?
9.6 (Critical)
{
"affected": [],
"aliases": [
"CVE-2018-18563"
],
"database_specific": {
"cwe_ids": [
"CWE-434"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-11-20T19:29:00Z",
"severity": "CRITICAL"
},
"details": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.",
"id": "GHSA-fvc7-cwmq-hcv2",
"modified": "2022-05-13T01:50:43Z",
"published": "2022-05-13T01:50:43Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18563"
},
{
"type": "WEB",
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/105843"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
CNVD-2018-25434
Vulnerability from cnvd - Published: 2018-12-14
VLAI Severity ?
Title
多款Roche设备权限许可和访问控制漏洞
Description
Roche Accu-Chek Inform II Instrument等都是瑞士罗氏(Roche)公司的手持式血液检测医疗设备。
多款Roche设备的软件更新机制存在设备权限许可和访问控制漏洞 ,该漏洞源于程序未能进行正确的访问控制,攻击者可借助特制的更新包利用该漏洞写入任意文件。
Severity
中
Patch Name
多款Roche设备权限许可和访问控制漏洞的补丁
Patch Description
Roche Accu-Chek Inform II Instrument等都是瑞士罗氏(Roche)公司的手持式血液检测医疗设备。
多款Roche设备的软件更新机制存在设备权限许可和访问控制漏洞 ,该漏洞源于程序未能进行正确的访问控制,攻击者可借助特制的更新包利用该漏洞写入任意文件。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://www.roche.com/
Reference
https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01
Impacted products
| Name | ['Roche Accu-Chek Inform II Instrument <03.06.00', 'Roche CoaguChek Pro II <04.03.00', 'Roche CoaguChek XS Plus <03.01.06', 'Roche CoaguChek XS Pro', 'Roche cobas h 232 <03.01.03', 'Roche cobas h 232 <04.00.04'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-18563"
}
},
"description": "Roche Accu-Chek Inform II Instrument\u7b49\u90fd\u662f\u745e\u58eb\u7f57\u6c0f\uff08Roche\uff09\u516c\u53f8\u7684\u624b\u6301\u5f0f\u8840\u6db2\u68c0\u6d4b\u533b\u7597\u8bbe\u5907\u3002\n\n\u591a\u6b3eRoche\u8bbe\u5907\u7684\u8f6f\u4ef6\u66f4\u65b0\u673a\u5236\u5b58\u5728\u8bbe\u5907\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u6f0f\u6d1e \uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u8fdb\u884c\u6b63\u786e\u7684\u8bbf\u95ee\u63a7\u5236\uff0c\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u66f4\u65b0\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u5199\u5165\u4efb\u610f\u6587\u4ef6\u3002",
"discovererName": "Niv Yehezkel",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.roche.com/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-25434",
"openTime": "2018-12-14",
"patchDescription": "Roche Accu-Chek Inform II Instrument\u7b49\u90fd\u662f\u745e\u58eb\u7f57\u6c0f\uff08Roche\uff09\u516c\u53f8\u7684\u624b\u6301\u5f0f\u8840\u6db2\u68c0\u6d4b\u533b\u7597\u8bbe\u5907\u3002\r\n\r\n\u591a\u6b3eRoche\u8bbe\u5907\u7684\u8f6f\u4ef6\u66f4\u65b0\u673a\u5236\u5b58\u5728\u8bbe\u5907\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u6f0f\u6d1e \uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u8fdb\u884c\u6b63\u786e\u7684\u8bbf\u95ee\u63a7\u5236\uff0c\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u66f4\u65b0\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u5199\u5165\u4efb\u610f\u6587\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "\u591a\u6b3eRoche\u8bbe\u5907\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Roche Accu-Chek Inform II Instrument \u003c03.06.00",
"Roche CoaguChek Pro II \u003c04.03.00",
"Roche CoaguChek XS Plus \u003c03.01.06",
"Roche CoaguChek XS Pro",
"Roche cobas h 232 \u003c03.01.03",
"Roche cobas h 232 \u003c04.00.04"
]
},
"referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01",
"serverity": "\u4e2d",
"submitTime": "2018-11-07",
"title": "\u591a\u6b3eRoche\u8bbe\u5907\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u6f0f\u6d1e"
}
GSD-2018-18563
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-18563",
"description": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.",
"id": "GSD-2018-18563"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-18563"
],
"details": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.",
"id": "GSD-2018-18563",
"modified": "2023-12-13T01:22:36.215479Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-18563",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01",
"refsource": "MISC",
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
},
{
"name": "105843",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/105843"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:roche:accu-chek_inform_ii_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "04.03.00",
"versionStartIncluding": "04.00.00",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:roche:accu-chek_inform_ii_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "03.06.00",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:roche:accu-chek_inform_ii:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:roche:cobas_h_232_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "03.01.03",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:roche:cobas_h_232_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "04.00.04",
"versionStartIncluding": "04.00.00",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:roche:cobas_h_232:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:roche:coaguchek_pro_ii_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "04.03.00",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:roche:coaguchek_pro_ii:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:roche:coaguchek_xs_plus_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "03.01.06",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:roche:coaguchek_xs_plus:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:roche:coaguchek_xs_pro_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "03.01.06",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:roche:coaguchek_xs_pro:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-18563"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01",
"refsource": "MISC",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
},
{
"name": "105843",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/105843"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 6.5,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 6.0
}
},
"lastModifiedDate": "2019-10-03T00:03Z",
"publishedDate": "2018-11-20T19:29Z"
}
}
}
ICSMA-18-310-01
Vulnerability from csaf_cisa - Published: 2018-11-06 00:00 - Updated: 2018-11-08 00:00Summary
Roche Diagnostics Point of Care Handheld Medical Devices (Update A)
Notes
CISA Disclaimer: This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation: Successful exploitation of these vulnerabilities could allow an attacker to gain unauthorized access to modify system settings or execute arbitrary code.
Critical infrastructure sectors: Healthcare and Public Health
Countries/areas deployed: Worldwide
Company headquarters location: Switzerland
Recommended Practices: NCCIC recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:
Recommended Practices: NCCIC reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.NCCIC also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS-CERT website in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to NCCIC for tracking and correlation against other incidents.
Exploitability: No known public exploits specifically target these vulnerabilities.
6.5 (Medium)
Vendor Fix
Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):
Vendor Fix
For non-connected devices:
Vendor Fix
For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.
Vendor Fix
For further information or concerns, please contact a local Roche Diagnostics office at the following location:
Vendor Fix
https://www.roche.com/about/business/roche_worldwide.htm
https://www.roche.com/about/business/roche_worldw…
8.0 (High)
Vendor Fix
Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):
Vendor Fix
For non-connected devices:
Vendor Fix
For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.
Vendor Fix
For further information or concerns, please contact a local Roche Diagnostics office at the following location:
Vendor Fix
https://www.roche.com/about/business/roche_worldwide.htm
https://www.roche.com/about/business/roche_worldw…
8.0 (High)
Vendor Fix
Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):
Vendor Fix
For non-connected devices:
Vendor Fix
For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.
Vendor Fix
For further information or concerns, please contact a local Roche Diagnostics office at the following location:
Vendor Fix
https://www.roche.com/about/business/roche_worldwide.htm
https://www.roche.com/about/business/roche_worldw…
8.3 (High)
Vendor Fix
Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):
Vendor Fix
For non-connected devices:
Vendor Fix
For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.
Vendor Fix
For further information or concerns, please contact a local Roche Diagnostics office at the following location:
Vendor Fix
https://www.roche.com/about/business/roche_worldwide.htm
https://www.roche.com/about/business/roche_worldw…
8.2 (High)
Vendor Fix
Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):
Vendor Fix
For non-connected devices:
Vendor Fix
For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.
Vendor Fix
For further information or concerns, please contact a local Roche Diagnostics office at the following location:
Vendor Fix
https://www.roche.com/about/business/roche_worldwide.htm
https://www.roche.com/about/business/roche_worldw…
References
Acknowledgments
Medigate
Niv Yehezkel
{
"document": {
"acknowledgments": [
{
"names": [
"Niv Yehezkel"
],
"organization": "Medigate",
"summary": "reporting these vulnerabilities to Roche"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of these vulnerabilities could allow an attacker to gain unauthorized access to modify system settings or execute arbitrary code.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Healthcare and Public Health",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Switzerland",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "NCCIC recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "NCCIC reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.NCCIC also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS-CERT website in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to NCCIC for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSMA-18-310-01 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2018/icsma-18-310-01.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSMA-18-310-01 Web Version",
"url": "https://www.cisa.gov/news-events/ics-medical-advisories/icsma-18-310-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Roche Diagnostics Point of Care Handheld Medical Devices (Update A)",
"tracking": {
"current_release_date": "2018-11-08T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSMA-18-310-01",
"initial_release_date": "2018-11-06T00:00:00.000000Z",
"revision_history": [
{
"date": "2018-11-06T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "ICSMA-18-310-01 Roche Point of Care Handheld Medical Devices"
},
{
"date": "2018-11-08T00:00:00.000000Z",
"legacy_version": "A",
"number": "2",
"summary": "ICSMA-18-310-01 Roche Diagnostics Point of Care Handheld Medical Devices (Update A)"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Accu-Chek Inform II",
"product": {
"name": "Point of Care handheld medical devices - Accu-Chek Inform II",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
},
{
"branches": [
{
"category": "product_version",
"name": "CoaguChek Pro II",
"product": {
"name": "Point of Care handheld medical devices - CoaguChek Pro II",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
},
{
"branches": [
{
"category": "product_version",
"name": "CoaguChek XS Plus",
"product": {
"name": "Point of Care handheld medical devices - CoaguChek XS Plus",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
},
{
"branches": [
{
"category": "product_version",
"name": "CoaguChek XS Pro",
"product": {
"name": "Point of Care handheld medical devices - CoaguChek XS Pro",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
},
{
"branches": [
{
"category": "product_version",
"name": "cobas h 232 POC",
"product": {
"name": "Point of Care handheld medical devices - cobas h 232 POC",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
},
{
"branches": [
{
"category": "product_version",
"name": "base units (BU)|handheld base units (HBU)",
"product": {
"name": "Point of Care handheld medical devices - Including the related base units (BU), base unit hubs and handheld base units (HBU).",
"product_id": "CSAFPID-0006"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
},
{
"branches": [
{
"category": "product_version",
"name": "Accu-Chek Inform II Base Unit Light",
"product": {
"name": "Point of Care handheld medical devices - Accu-Chek Inform II Base Unit Light",
"product_id": "CSAFPID-0007"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
},
{
"branches": [
{
"category": "product_version",
"name": "Accu-Chek Inform II Base Unit NEW with Software 04.00.00 or newer",
"product": {
"name": "Point of Care handheld medical devices - Accu-Chek Inform II Base Unit NEW with Software 04.00.00 or newer",
"product_id": "CSAFPID-0008"
}
}
],
"category": "product_name",
"name": "Point of Care handheld medical devices"
}
],
"category": "vendor",
"name": "Roche Diagnostics"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-18561",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "summary",
"text": "Weak access credentials may enable attackers in the adjacent network to gain unauthorized service access via a service interface. CVE-2018-18561 has been assigned to this vulnerability. A CVSS v3 base score of 6.5 has been calculated; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).. Affected products:CVE-2018-18561 has been assigned to this vulnerability. A CVSS v3 base score of 6.5 has been calculated; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-18561"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For non-connected devices:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For further information or concerns, please contact a local Roche Diagnostics office at the following location:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "https://www.roche.com/about/business/roche_worldwide.htm",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://www.roche.com/about/business/roche_worldwide.htm"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2018-18562",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Insecure permissions in a service interface may allow authenticated attackers in the adjacent network to execute arbitrary commands on the operating systems. CVE-2018-18562 has been assigned to this vulnerability. A CVSS v3 base score of 8.0 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H).. Affected products:CVE-2018-18562 has been assigned to this vulnerability. A CVSS v3 base score of 8.0 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-18562"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For non-connected devices:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For further information or concerns, please contact a local Roche Diagnostics office at the following location:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "https://www.roche.com/about/business/roche_worldwide.htm",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://www.roche.com/about/business/roche_worldwide.htm"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2018-18563",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the software update mechanism allows an attacker in adjacent network to overwrite arbitrary files on the system through a crafted update package. CVE-2018-18563 has been assigned to this vulnerability. A CVSS v3 base score of 8.0 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H).. Affected products: Affected products:. Accu-Chek Inform II Instrument - all versions before 03.06.00 (serial number below 14000) / 04.03.00 (serial Number above 14000)CVE-2018-18563 has been assigned to this vulnerability. A CVSS v3 base score of 8.0 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-18563"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For non-connected devices:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For further information or concerns, please contact a local Roche Diagnostics office at the following location:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "https://www.roche.com/about/business/roche_worldwide.htm",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://www.roche.com/about/business/roche_worldwide.htm"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2018-18564",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "summary",
"text": "Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted message. CVE-2018-18564 has been assigned to this vulnerability. A CVSS v3 base score of 8.3 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H).. Affected Products:CVE-2018-18564 has been assigned to this vulnerability. A CVSS v3 base score of 8.3 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-18564"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For non-connected devices:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For further information or concerns, please contact a local Roche Diagnostics office at the following location:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "https://www.roche.com/about/business/roche_worldwide.htm",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://www.roche.com/about/business/roche_worldwide.htm"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2018-18565",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "summary",
"text": "Improper access control allows attackers in the adjacent network to change the instrument configuration. CVE-2018-18565 has been assigned to this vulnerability. A CVSS v3 base score of 8.2 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:H).. Affected products:CVE-2018-18565 has been assigned to this vulnerability. A CVSS v3 base score of 8.2 has been calculated; the CVSS vector string is (AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-18565"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Roche recommends the following mitigation procedures for connected devices (Ethernet and Wi-Fi):",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For non-connected devices:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For all affected products, Roche Diagnostic has scheduled release of new software updates with availability beginning November 2018.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "For further information or concerns, please contact a local Roche Diagnostics office at the following location:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "https://www.roche.com/about/business/roche_worldwide.htm",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://www.roche.com/about/business/roche_worldwide.htm"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
}
]
}
VAR-201811-0060
Vulnerability from variot - Updated: 2024-11-23 21:52An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message. plural Roche The product contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. RocheAccu-ChekInformIIInstrument and others are hand-held blood test medical devices from Roche, Switzerland. There are device permission and access control vulnerabilities in the software update mechanism of several Roche devices. The vulnerability stems from the failure of the program to perform proper access control. The attacker can use the special update package to write the file to any file. Multiple Roche Point of Care Handheld Medical Services are prone to the following security vulnerabilities: 1. An authentication bypass vulnerability 2. An OS command-injection vulnerability 3. An arbitrary file-upload vulnerability 4. A remote code-execution vulnerability 5. An access bypass vulnerability An attacker can exploit these issues to bypass authentication mechanism, execute arbitrary commands and codes, upload arbitrary files, or to bypass security restrictions
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201811-0060",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "coaguchek pro ii",
"scope": "lt",
"trust": 1.6,
"vendor": "roche",
"version": "04.03.00"
},
{
"model": "coaguchek xs plus",
"scope": "lt",
"trust": 1.6,
"vendor": "roche",
"version": "03.01.06"
},
{
"model": "accu-chek inform ii",
"scope": "lt",
"trust": 1.0,
"vendor": "roche",
"version": "04.03.00"
},
{
"model": "accu-chek inform ii",
"scope": "lt",
"trust": 1.0,
"vendor": "roche",
"version": "03.06.00"
},
{
"model": "cobas h 232",
"scope": "lt",
"trust": 1.0,
"vendor": "roche",
"version": "03.01.03"
},
{
"model": "cobas h 232",
"scope": "gte",
"trust": 1.0,
"vendor": "roche",
"version": "04.00.00"
},
{
"model": "cobas h 232",
"scope": "lt",
"trust": 1.0,
"vendor": "roche",
"version": "04.00.04"
},
{
"model": "coaguchek xs pro",
"scope": "lt",
"trust": 1.0,
"vendor": "roche",
"version": "03.01.06"
},
{
"model": "accu-chek inform ii",
"scope": "gte",
"trust": 1.0,
"vendor": "roche",
"version": "04.00.00"
},
{
"model": "accu-chek inform ii",
"scope": "eq",
"trust": 0.8,
"vendor": "roche diagnostics",
"version": "04.03.00"
},
{
"model": "accu-chek inform ii",
"scope": "lt",
"trust": 0.8,
"vendor": "roche diagnostics",
"version": "of 04.x"
},
{
"model": "accu-chek inform ii instrument",
"scope": "lt",
"trust": 0.6,
"vendor": "roche",
"version": "03.06.00"
},
{
"model": "coaguchek xs pro",
"scope": null,
"trust": 0.6,
"vendor": "roche",
"version": null
},
{
"model": "cobas h",
"scope": "eq",
"trust": 0.6,
"vendor": "roche",
"version": "232\u003c03.01.03"
},
{
"model": "cobas h",
"scope": "eq",
"trust": 0.6,
"vendor": "roche",
"version": "232\u003c04.00.04"
},
{
"model": null,
"scope": "eq",
"trust": 0.4,
"vendor": "accu chek inform ii",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.4,
"vendor": "cobas h 232",
"version": "*"
},
{
"model": "cobas h",
"scope": "eq",
"trust": 0.3,
"vendor": "roche",
"version": "2320"
},
{
"model": "coaguchek xs pro",
"scope": "eq",
"trust": 0.3,
"vendor": "roche",
"version": "0"
},
{
"model": "coaguchek xs plus",
"scope": "eq",
"trust": 0.3,
"vendor": "roche",
"version": "0"
},
{
"model": "coaguchek pro ii",
"scope": "eq",
"trust": 0.3,
"vendor": "roche",
"version": "0"
},
{
"model": "coaguchek",
"scope": "eq",
"trust": 0.3,
"vendor": "roche",
"version": "0"
},
{
"model": "accu-chek inform ii instrument",
"scope": "eq",
"trust": 0.3,
"vendor": "roche",
"version": "0"
},
{
"model": "cobas h",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "2324.0.4"
},
{
"model": "cobas h",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "2323.1.4"
},
{
"model": "cobas h",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "2323.1.3"
},
{
"model": "coaguchek xs pro",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "3.1.6"
},
{
"model": "coaguchek xs plus",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "3.1.6"
},
{
"model": "coaguchek pro ii",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "4.3"
},
{
"model": "coaguchek",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "3.1.4"
},
{
"model": "accu-chek inform ii instrument",
"scope": "ne",
"trust": 0.3,
"vendor": "roche",
"version": "3.6"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "coaguchek pro ii",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "coaguchek xs plus",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "coaguchek xs pro",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"db": "BID",
"id": "105843"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:roche:accu-chek_inform_ii_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:roche:coaguchek_pro_ii_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:roche:coaguchek_xs_plus_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:roche:coaguchek_xs_pro_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:roche:cobas_h_232_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Niv Yehezkel of Medigate",
"sources": [
{
"db": "BID",
"id": "105843"
}
],
"trust": 0.3
},
"cve": "CVE-2018-18563",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 6.5,
"id": "CVE-2018-18563",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 5.9,
"confidentialityImpact": "NONE",
"exploitabilityScore": 2.5,
"id": "CNVD-2018-25434",
"impactScore": 9.2,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:A/AC:H/Au:S/C:N/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 5.9,
"confidentialityImpact": "NONE",
"exploitabilityScore": 2.5,
"id": "7d81238f-463f-11e9-8b84-000c29342cb1",
"impactScore": 9.2,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:A/AC:H/Au:S/C:N/I:C/A:C",
"version": "2.9 [IVD]"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "ADJACENT",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.8,
"id": "CVE-2018-18563",
"impactScore": 6.0,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2018-18563",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2018-18563",
"trust": 0.8,
"value": "Critical"
},
{
"author": "CNVD",
"id": "CNVD-2018-25434",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201811-116",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1",
"trust": 0.2,
"value": "CRITICAL"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-116"
},
{
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message. plural Roche The product contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. RocheAccu-ChekInformIIInstrument and others are hand-held blood test medical devices from Roche, Switzerland. There are device permission and access control vulnerabilities in the software update mechanism of several Roche devices. The vulnerability stems from the failure of the program to perform proper access control. The attacker can use the special update package to write the file to any file. Multiple Roche Point of Care Handheld Medical Services are prone to the following security vulnerabilities:\n1. An authentication bypass vulnerability\n2. An OS command-injection vulnerability\n3. An arbitrary file-upload vulnerability\n4. A remote code-execution vulnerability\n5. An access bypass vulnerability\nAn attacker can exploit these issues to bypass authentication mechanism, execute arbitrary commands and codes, upload arbitrary files, or to bypass security restrictions",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-18563"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"db": "BID",
"id": "105843"
},
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
}
],
"trust": 2.61
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2018-18563",
"trust": 3.5
},
{
"db": "ICS CERT",
"id": "ICSMA-18-310-01",
"trust": 3.3
},
{
"db": "BID",
"id": "105843",
"trust": 1.9
},
{
"db": "CNVD",
"id": "CNVD-2018-25434",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201811-116",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880",
"trust": 0.8
},
{
"db": "IVD",
"id": "7D81238F-463F-11E9-8B84-000C29342CB1",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"db": "BID",
"id": "105843"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-116"
},
{
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"id": "VAR-201811-0060",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-25434"
}
],
"trust": 1.542857146
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS",
"Network device"
],
"sub_category": null,
"trust": 0.6
},
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-25434"
}
]
},
"last_update_date": "2024-11-23T21:52:40.335000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "https://diagnostics.roche.com/us/en/home.html"
},
{
"title": "Patches for multiple Roche device permissions and access control vulnerabilities",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/147339"
},
{
"title": "Multiple Roche Repair measures for device security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=100318"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-116"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-434",
"trust": 1.0
},
{
"problemtype": "CWE-284",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.3,
"url": "https://ics-cert.us-cert.gov/advisories/icsma-18-310-01"
},
{
"trust": 1.6,
"url": "http://www.securityfocus.com/bid/105843"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-18563"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-18563"
},
{
"trust": 0.3,
"url": "https://www.roche.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"db": "BID",
"id": "105843"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-116"
},
{
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"db": "BID",
"id": "105843"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-116"
},
{
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-12-14T00:00:00",
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"date": "2018-12-14T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"date": "2018-11-06T00:00:00",
"db": "BID",
"id": "105843"
},
{
"date": "2019-02-08T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"date": "2018-11-07T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201811-116"
},
{
"date": "2018-11-20T19:29:00.853000",
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-12-14T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-25434"
},
{
"date": "2018-11-06T00:00:00",
"db": "BID",
"id": "105843"
},
{
"date": "2019-02-08T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-012880"
},
{
"date": "2020-07-07T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201811-116"
},
{
"date": "2024-11-21T03:56:09.813000",
"db": "NVD",
"id": "CVE-2018-18563"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote or local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201811-116"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural Roche Access control vulnerabilities in products",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-012880"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Code problem",
"sources": [
{
"db": "IVD",
"id": "7d81238f-463f-11e9-8b84-000c29342cb1"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-116"
}
],
"trust": 0.8
}
}
FKIE_CVE-2018-18563
Vulnerability from fkie_nvd - Published: 2018-11-20 19:29 - Updated: 2024-11-21 03:56
Severity ?
Summary
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://www.securityfocus.com/bid/105843 | Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01 | Mitigation, Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/105843 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01 | Mitigation, Third Party Advisory, US Government Resource |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| roche | accu-chek_inform_ii_firmware | * | |
| roche | accu-chek_inform_ii_firmware | * | |
| roche | accu-chek_inform_ii | - | |
| roche | cobas_h_232_firmware | * | |
| roche | cobas_h_232_firmware | * | |
| roche | cobas_h_232 | - | |
| roche | coaguchek_pro_ii_firmware | * | |
| roche | coaguchek_pro_ii | - | |
| roche | coaguchek_xs_plus_firmware | * | |
| roche | coaguchek_xs_plus | - | |
| roche | coaguchek_xs_pro_firmware | * | |
| roche | coaguchek_xs_pro | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:roche:accu-chek_inform_ii_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DB351BFB-4024-43CF-9FB3-E11F87C37C33",
"versionEndExcluding": "03.06.00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:roche:accu-chek_inform_ii_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "78B1BA80-7894-4820-BBB5-6CEAB017E125",
"versionEndExcluding": "04.03.00",
"versionStartIncluding": "04.00.00",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:roche:accu-chek_inform_ii:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A997E9CB-50C6-4363-AC6C-F03050FE2CFC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:roche:cobas_h_232_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F861AB60-6E9A-473E-99C0-23840B8ACC98",
"versionEndExcluding": "03.01.03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:roche:cobas_h_232_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3DE420F8-C9A3-4835-BE38-5ED2D2092816",
"versionEndExcluding": "04.00.04",
"versionStartIncluding": "04.00.00",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:roche:cobas_h_232:-:*:*:*:*:*:*:*",
"matchCriteriaId": "32562950-3817-40E3-B252-1288ED9A375F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:roche:coaguchek_pro_ii_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A390E582-7AC2-4701-BF0C-7C5EDF54A72D",
"versionEndExcluding": "04.03.00",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:roche:coaguchek_pro_ii:-:*:*:*:*:*:*:*",
"matchCriteriaId": "44F895BD-8B2C-4737-B86C-565450427410",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:roche:coaguchek_xs_plus_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5C2C91C0-645D-4411-9E9C-569FE5AD3C56",
"versionEndExcluding": "03.01.06",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:roche:coaguchek_xs_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "32B077F7-7D93-4ECD-A542-7977ED81E635",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:roche:coaguchek_xs_pro_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0F4955E1-A8D5-4EF2-A59A-C7B21050DD34",
"versionEndExcluding": "03.01.06",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:roche:coaguchek_xs_pro:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7658A51C-E540-4EBD-A6F1-CEBC40696842",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, CoaguChek XS Plus before 03.01.06, CoaguChek XS Pro before 03.01.06, cobas h 232 before 03.01.03 (Serial Number below KQ0400000 or KS0400000) and cobas h 232 before 04.00.04 (Serial Number above KQ0400000 or KS0400000). Improper access control to a service command allows attackers in the adjacent network to execute arbitrary code on the system through a crafted Poct1-A message."
},
{
"lang": "es",
"value": "Se ha descubierto un problema en Roche Accu-Chek Inform II Instrument en versiones anteriores a la 03.06.00 (n\u00famero de serie inferior a 14000) y 04.x en versiones anteriores a la 04.03.00 (n\u00famero de serie superior a 14000), CoaguChek Pro II en versiones anteriores a la 04.03.00, CoaguChek XS Plus en versiones anteriores a la 03.01.06, CoaguChek XS Pro en versiones anteriores a la 03.01.06, cobas h 232 en versiones anteriores a la 03.01.03 (n\u00famero de serie inferior a KQ0400000 o KS0400000) y cobas h 232 en versiones anteriores a la 04.00.04 (n\u00famero de serie superior a KQ0400000 o KS0400000). El control de acceso incorrecto a un comando del servicio permite que los atacantes en la red adyacente ejecuten c\u00f3digo arbitrario en el sistema mediante un mensaje Poct1-A manipulado."
}
],
"id": "CVE-2018-18563",
"lastModified": "2024-11-21T03:56:09.813",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 6.5,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-11-20T19:29:00.853",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/105843"
},
{
"source": "cve@mitre.org",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/105843"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-434"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…