PT-2018-16980 · Philips · Intellispace Portal

Published

2018-03-26

Updated

2019-10-09

CVE-2018-5474

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Philips Intellispace Portal versions 7.0.x through 8.0.x

Description The issue is related to an input validation vulnerability. This could allow a remote attacker to execute arbitrary code or cause the application to crash.

Recommendations For versions 7.0.x through 8.0.x, update to a version that includes input validation fixes to prevent arbitrary code execution and application crashes.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2018-5474

Affected Products

Intellispace Portal

PT-2018-16980 · Philips · Intellispace Portal

CVE-2018-5474

Weakness Enumeration

Related Identifiers

Affected Products

References · 5