CVE-2018-5470
N/A
N/A
Summary
Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an unquoted search path or element vulnerability that has been identified, which may allow an authorized local user to execute arbitrary code and escalate their level of privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Philips | Philips IntelliSpace Portal | 8.0.x | affected |
| Philips | Philips IntelliSpace Portal | 7.0.x | affected |
Weaknesses
- CWE-428: UNQUOTED SEARCH PATH OR ELEMENT CWE-428
ADP Enrichment
CVE Program Container
Additional References
- https://www.usa.philips.com/healthcare/about/customer-support/product-security
- http://www.securityfocus.com/bid/103182
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
References
- https://www.usa.philips.com/healthcare/about/customer-support/product-security
- http://www.securityfocus.com/bid/103182
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.