PT-2018-16965 · Philips · Philips Alice 6 System

Published

2018-03-28

Updated

2019-10-09

CVE-2018-5451

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Philips Alice 6 System versions prior to R8.0.2

Description The software does not properly verify the identity of an actor, potentially leading to exposure of resources or functionality to unintended actors. This could provide attackers with sensitive information or the ability to execute arbitrary code.

Recommendations For Philips Alice 6 System versions prior to R8.0.2, update to a version later than R8.0.2 to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2018-5451

Affected Products

Philips Alice 6 System

PT-2018-16965 · Philips · Philips Alice 6 System

CVE-2018-5451

Weakness Enumeration

Related Identifiers

Affected Products

References · 4