cvelist/2018/14xxx/CVE-2018-14799.json

{
    "CVE_data_meta": {
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "DATE_PUBLIC": "2018-08-16T00:00:00",
        "ID": "CVE-2018-14799",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "All versions prior to May 2018."
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Philips"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, the PageWriter device does not sanitize data entered by user. This can lead to buffer overflow or format string vulnerabilities."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "IMPROPER INPUT VALIDATION CWE-20"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-228-01",
                "refsource": "MISC",
                "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-228-01"
            },
            {
                "name": "https://www.usa.philips.com/healthcare/about/customer-support/product-security",
                "refsource": "CONFIRM",
                "url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"
            },
            {
                "name": "105103",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/105103"
            }
        ]
    }
}