Vulnerabilities > CVE-2018-5454 - Unspecified vulnerability in Philips Intellispace Portal 8.0/9.0

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

philips

NVD

Published: 2018-03-26

Updated: 2019-10-09

Summary

Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have a vulnerability where code debugging methods are enabled, which could allow an attacker to remotely execute arbitrary code during runtime.

Vulnerable Configurations

Part	Description	Count
Application	Philips Philips Intellispace Portal 8.0 Philips Intellispace Portal 9.0	2

References

http://www.securityfocus.com/bid/103182
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
https://www.usa.philips.com/healthcare/about/customer-support/product-security