mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
76 lines
2.6 KiB
JSON
76 lines
2.6 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "ics-cert@hq.dhs.gov",
|
|
"DATE_PUBLIC": "2018-02-27T00:00:00",
|
|
"ID": "CVE-2018-5472",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Philips IntelliSpace Portal",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "8.0.x"
|
|
},
|
|
{
|
|
"version_value": "7.0.x"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "Philips"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Philips Intellispace Portal all versions 7.0.x and 8.0.x have an insecure windows permissions vulnerability that could allow an attacker to gain unauthorized access and in some cases escalate their level of privilege or execute arbitrary code."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "PERMISSIONS, PRIVILEGES, AND ACCESS CONTROLS CWE-264"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "https://www.usa.philips.com/healthcare/about/customer-support/product-security",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"
|
|
},
|
|
{
|
|
"name": "103182",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/103182"
|
|
},
|
|
{
|
|
"name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02",
|
|
"refsource": "MISC",
|
|
"url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02"
|
|
}
|
|
]
|
|
}
|
|
} |