Back to search
CVE-2018-14787
Published: Aug 22, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version 2.x or prior and Xcelera Version 4.1 or prior), an attacker with escalated privileges could access folders which contain executables where authenticated users have write permissions, and could then execute arbitrary code with local administrative permissions.
| Vendor | Product | Versions |
|---|---|---|
Philips | IntelliSpace Cardiovascular (ISCV) products | affected IntelliSpace Cardiovascular, Version 3.1 or prioraffected Xcelera Version 4.1 or prior |
Weaknesses (CWE)
References
https://ics-cert.us-cert.gov/advisories/ICSMA-18-226-01
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now