cvelist/2018/5xxx/CVE-2018-5472.json

{
    "CVE_data_meta": {
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "DATE_PUBLIC": "2018-02-27T00:00:00",
        "ID": "CVE-2018-5472",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Philips IntelliSpace Portal",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "8.0.x"
                                        },
                                        {
                                            "version_value": "7.0.x"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Philips"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Philips Intellispace Portal all versions 7.0.x and 8.0.x have an insecure windows permissions vulnerability that could allow an attacker to gain unauthorized access and in some cases escalate their level of privilege or execute arbitrary code."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "PERMISSIONS, PRIVILEGES, AND ACCESS CONTROLS CWE-264"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://www.usa.philips.com/healthcare/about/customer-support/product-security",
                "refsource": "CONFIRM",
                "url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"
            },
            {
                "name": "103182",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/103182"
            },
            {
                "name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02",
                "refsource": "MISC",
                "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02"
            }
        ]
    }
}
- Synchronized data. 2018-01-12 04:03:43 -05:00			`{`
"-Synchronized-Data." 2019-03-18 06:04:37 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "ics-cert@hq.dhs.gov",`
			`"DATE_PUBLIC": "2018-02-27T00:00:00",`
			`"ID": "CVE-2018-5472",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Philips IntelliSpace Portal",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "8.0.x"`
			`},`
			`{`
			`"version_value": "7.0.x"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Philips"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submissions from ICS-CERT for ICSMA-18-058-02 from 2018-03-23. 2018-03-26 09:06:34 -04:00			`{`
"-Synchronized-Data." 2019-03-18 06:04:37 +00:00			`"lang": "eng",`
			`"value": "Philips Intellispace Portal all versions 7.0.x and 8.0.x have an insecure windows permissions vulnerability that could allow an attacker to gain unauthorized access and in some cases escalate their level of privilege or execute arbitrary code."`
- Added submissions from ICS-CERT for ICSMA-18-058-02 from 2018-03-23. 2018-03-26 09:06:34 -04:00			`}`
"-Synchronized-Data." 2019-03-18 06:04:37 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "PERMISSIONS, PRIVILEGES, AND ACCESS CONTROLS CWE-264"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://www.usa.philips.com/healthcare/about/customer-support/product-security",`
			`"refsource": "CONFIRM",`
			`"url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"`
			`},`
			`{`
			`"name": "103182",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/103182"`
			`},`
			`{`
			`"name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02",`
			`"refsource": "MISC",`
			`"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02"`
			`}`
			`]`
			`}`
			`}`