In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, the PageWriter device does not sanitize data entered by user. This can lead to buffer overflow or format string vulnerabilities.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/105103 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSMA-18-228-01 | Third Party Advisory US Government Resource VDB Entry |
https://www.usa.philips.com/healthcare/about/customer-support/product-security | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
No history.
Information
Published : 2018-08-22 18:29
Updated : 2024-02-28 16:48
NVD link : CVE-2018-14799
Mitre link : CVE-2018-14799
CVE.ORG link : CVE-2018-14799
JSON object : View
Products Affected
philips
- pagewriter_tc30_firmware
- pagewriter_tc20_firmware
- pagewriter_tc50_firmware
- pagewriter_tc50
- pagewriter_tc30
- pagewriter_tc20
- pagewriter_tc10
- pagewriter_tc70_firmware
- pagewriter_tc70
- pagewriter_tc10_firmware