CVE-2018-14801

Summary

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, an attacker with both the superuser password and physical access can enter the superuser password that can be used to access and modify all settings on the device, as well as allow the user to reset existing passwords.

Affected Software

VendorProductVersion RangeStatus
PhilipsPageWriter TC10, TC20, TC30, TC50, TC70 CardiographsAll versions prior to May 2018.affected

Weaknesses

  • CWE-798: USE OF HARD-CODED CREDENTIALS CWE-798

ADP Enrichment

CVE Program Container

Additional References

References