Vulnerabilities > BD > Performa

DATE CVE VULNERABILITY TITLE RISK
2018-05-24 CVE-2018-10595 SQL Injection vulnerability in BD Database Manager, Performa and Reada
A vulnerability in ReadA version 1.1.0.2 and previous allows an authorized user with access to a privileged account on a BD Kiestra system (Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor) to issue SQL commands, which may result in loss or corruption of data.
high complexity
bd CWE-89
6.3
6.3
2018-05-24 CVE-2018-10593 SQL Injection vulnerability in BD Database Manager, Performa and Reada
A vulnerability in DB Manager version 3.0.1.0 and previous and PerformA version 3.0.0.0 and previous allows an authorized user with access to a privileged account on a BD Kiestra system (Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor) to issue SQL commands, which may result in data corruption.
high complexity
bd CWE-89
5.6
5.6
2017-06-30 CVE-2017-6022 Use of Hard-coded Credentials vulnerability in BD KLA Journal Service and Performa
A hard-coded password issue was discovered in Becton, Dickinson and Company (BD) PerformA, Version 2.0.14.0 and prior versions, and KLA Journal Service, Version 1.0.51 and prior versions.
network
low complexity
bd CWE-798
critical
 9.8
9.8