PT-2018-16980 · Philips · Intellispace Portal

Publicado

2018-03-26

·

Atualizado

2019-10-09

·

CVE-2018-5474

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Philips Intellispace Portal versions 7.0.x through 8.0.x
Description The issue is related to an input validation vulnerability. This could allow a remote attacker to execute arbitrary code or cause the application to crash.
Recommendations For versions 7.0.x through 8.0.x, update to a version that includes input validation fixes to prevent arbitrary code execution and application crashes.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2018-5474

Produtos afetados

Intellispace Portal