CVE-2018-18562

An issue was discovered in Roche Accu-Chek Inform II Base Unit / Base Unit Hub before 03.01.04 and CoaguChek / cobas h232 Handheld Base Unit before 03.01.04. Weak access credentials may enable attackers in the adjacent network to gain unauthorized service access via a service interface.
References
Link Resource
http://www.securityfocus.com/bid/105843 Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01 Mitigation Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/105843 Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01 Mitigation Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:roche:accu-chek_inform_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:roche:accu-chek_inform_ii:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:roche:cobas_h_232_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:roche:cobas_h_232:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:roche:coaguchek_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:roche:coaguchek:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:roche:base_unit_hub_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:roche:base_unit_hub:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:56

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/105843 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/105843 - Third Party Advisory, VDB Entry
References () https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01 - Mitigation, Third Party Advisory, US Government Resource () https://ics-cert.us-cert.gov/advisories/ICSMA-18-310-01 - Mitigation, Third Party Advisory, US Government Resource

Information

Published : 2018-11-20 19:29

Updated : 2024-11-21 03:56


NVD link : CVE-2018-18562

Mitre link : CVE-2018-18562

CVE.ORG link : CVE-2018-18562


JSON object : View

Products Affected

roche

  • cobas_h_232_firmware
  • coaguchek
  • base_unit_hub
  • base_unit_hub_firmware
  • cobas_h_232
  • accu-chek_inform_ii_firmware
  • accu-chek_inform_ii
  • coaguchek_firmware
CWE
CWE-521

Weak Password Requirements