CVE-2018-14789

Summary

In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version 3.1 or prior and Xcelera Version 4.1 or prior), an unquoted search path or element vulnerability has been identified, which may allow an attacker to execute arbitrary code and escalate their level of privileges.

Affected Software

VendorProductVersion RangeStatus
PhilipsIntelliSpace Cardiovascular (ISCV) productsIntelliSpace Cardiovascular, Version 3.1 or prioraffected
PhilipsIntelliSpace Cardiovascular (ISCV) productsXcelera Version 4.1 or prioraffected

Weaknesses

  • CWE-428: UNQUOTED SEARCH PATH OR ELEMENT CWE-428

ADP Enrichment

CVE Program Container

Additional References

References