Vulnerability Details CVE-2018-5454
Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have a vulnerability where code debugging methods are enabled, which could allow an attacker to remotely execute arbitrary code during runtime.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.4%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 6.8
References
- http://www.securityfocus.com/bid/103182
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
- https://www.usa.philips.com/healthcare/about/customer-support/product-security
- http://www.securityfocus.com/bid/103182
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
- https://www.usa.philips.com/healthcare/about/customer-support/product-security
Products affected by CVE-2018-5454
-
cpe:2.3:a:philips:intellispace_portal:8.0
-
cpe:2.3:a:philips:intellispace_portal:9.0