CVE-2018-10593

Summary

A vulnerability in DB Manager version 3.0.1.0 and previous and PerformA version 3.0.0.0 and previous allows an authorized user with access to a privileged account on a BD Kiestra system (Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor) to issue SQL commands, which may result in data corruption.

Affected Software

VendorProductVersion RangeStatus
Becton, Dickinson and CompanyKiestra and InoqulA systemsKiestra TLA, BD Kiestra WCA, and BD InoqulA+ specimen processor using Database (DB) Manager version 3.0.1.0, and previous, and PerformA version 3.0.0.0 and previous.affected

Weaknesses

  • CWE-356: Product UI does not warn user of unsafe actions CWE-356

ADP Enrichment

CVE Program Container

Additional References

References