CVE-2017-13993

CVE-2017-13993

Vendor N/A
Product i-SENS, Inc. SmartLog Diabetes Management Software
Weakness CWE-428
Published October 4, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

An Uncontrolled Search Path or Element issue was discovered in i-SENS SmartLog Diabetes Management Software, Version 2.4.0 and prior versions. An uncontrolled search path element vulnerability has been identified which could be exploited by placing a specially crafted DLL file in the search path. If the malicious DLL is loaded prior to the valid DLL, an attacker could execute arbitrary code on the system. This vulnerability does not affect the connected blood glucose monitor and would not impact delivery of therapy to the patient.

Key dates

02Disclosure timeline

October 4, 2017 CVE published
August 5, 2024 Record updated