cve/2018/CVE-2018-18977.md

CVE-2018-18977

Description

An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01-15. An attacker may reverse engineer the codebase to extract sensitive data that contributes to the disclosure of medical information of patients utilizing the Ascensia platform. This occurs because of weak obfuscation.

POC

Reference

• https://depthsecurity.com/blog/medical-exploitation-you-are-now-diabetic

Github

No PoCs found on GitHub currently.