CVE-2018-10593

Sažetak

A vulnerability in DB Manager version 3.0.1.0 and previous and PerformA version 3.0.0.0 and previous allows an authorized user with access to a privileged account on a BD Kiestra system (Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor) to issue SQL commands, which may result in data corruption.

Reference

https://ics-cert.us-cert.gov/advisories/ICSMA-18-142-01
https://www.bd.com/en-us/support/product-security-and-privacy/product-security-bulletin-bd-kiestra-tla-bd-kiestra-wca-bd-inoqula

CVSS

Base:	3.8
Impact:	4.9
Exploitability:	4.4

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	PARTIAL

CVSS vektor

AV:A/AC:M/Au:S/C:N/I:P/A:P

Zadnje važnije ažuriranje

09-10-2019 - 23:32

Objavljeno

24-05-2018 - 16:29