Vulnerabilities > CVE-2018-5472 - Unspecified vulnerability in Philips Intellispace Portal 8.0/9.0

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

philips

critical

NVD

Published: 2018-03-26

Updated: 2019-10-09

Summary

Philips Intellispace Portal all versions 7.0.x and 8.0.x have an insecure windows permissions vulnerability that could allow an attacker to gain unauthorized access and in some cases escalate their level of privilege or execute arbitrary code.

Vulnerable Configurations

Part	Description	Count
Application	Philips Philips Intellispace Portal 9.0 Philips Intellispace Portal 8.0	2

References

https://www.usa.philips.com/healthcare/about/customer-support/product-security
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
http://www.securityfocus.com/bid/103182