Vulnerability Details CVE-2018-8856
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software contains hard-coded cryptographic key, which it uses for encryption of internal data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/105194
- https://ics-cert.us-cert.gov/advisories/ICSA-18-242-01
- https://www.usa.philips.com/healthcare/about/customer-support/product-security
- http://www.securityfocus.com/bid/105194
- https://ics-cert.us-cert.gov/advisories/ICSA-18-242-01
- https://www.usa.philips.com/healthcare/about/customer-support/product-security
Products affected by CVE-2018-8856
-
cpe:2.3:o:philips:e-alert_firmware:-
-
cpe:2.3:o:philips:e-alert_firmware:2.1
-
cpe:2.3:o:philips:e-alert_firmware:r2.1