CVE-2018-10595

Summary

A vulnerability in ReadA version 1.1.0.2 and previous allows an authorized user with access to a privileged account on a BD Kiestra system (Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor) to issue SQL commands, which may result in loss or corruption of data.

Affected Software

VendorProductVersion RangeStatus
Becton, Dickinson and CompanyKiestra and InoqulA systemsKiestra TLA, Kiestra WCA, and InoqulA+ specimen processor using ReadA Overview version 1.1.0.2 and previous.affected

Weaknesses

  • CWE-356: Product UI does not warn user of unsafe actions CWE-356

ADP Enrichment

CVE Program Container

Additional References

References