mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
76 lines
2.6 KiB
JSON
76 lines
2.6 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "ics-cert@hq.dhs.gov",
|
|
"DATE_PUBLIC": "2018-02-27T00:00:00",
|
|
"ID": "CVE-2018-5470",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Philips IntelliSpace Portal",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "8.0.x"
|
|
},
|
|
{
|
|
"version_value": "7.0.x"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "Philips"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an unquoted search path or element vulnerability that has been identified, which may allow an authorized local user to execute arbitrary code and escalate their level of privileges."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "UNQUOTED SEARCH PATH OR ELEMENT CWE-428"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "https://www.usa.philips.com/healthcare/about/customer-support/product-security",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"
|
|
},
|
|
{
|
|
"name": "103182",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/103182"
|
|
},
|
|
{
|
|
"name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02",
|
|
"refsource": "MISC",
|
|
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02"
|
|
}
|
|
]
|
|
}
|
|
} |