cvedb.io
CVE-2018-18564
HIGH · CVSS 7.4
EPSS exploitation probability: 0%
Published 2018-11-20T19:29:00.900 · Last modified 2026-06-17T01:47:30.810

Summary

An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, and cobas h 232 before 04.00.04 (Serial number above KQ0400000 or KS0400000). Improper access control allows attackers in the adjacent network to change the instrument configuration.

Affected products

roche — accu-chek_inform_ii_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when roche ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.