CVE-2018-5474 — Vulnetix

CVE-2018-5474 PUBLISHED CVSS 7.5 HIGH

Philips Intellispace Portal all versions 7.0.x and 8.0.x have an input validation vulnerability that could allow a remote attacker to execute arbitrary code or cause the application to crash.

EPSS 5.76% · 90.6th percentile

Risk Scores

CVSS 2.0

7.5

EPSS Score

5.76%

90.6th percentile

Affected Products

Vendor	Product	Versions
Philips	Philips IntelliSpace Portal	8.0.x, 7.0.x
philips	intellispace_portal	8.0, 9.0

Exploit Intelligence

https://www.usa.philips.com/healthcare/about/customer-support/product-security (circl)
103182 (circl)
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02 (circl)

Timeline

Mar 26, 2018 CVE Published
Apr 14, 2021 EPSS Score
Jun 23, 2021 EPSS Score
Oct 26, 2021 EPSS Score
Dec 27, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Feb 28, 2022 EPSS Score
Jul 3, 2022 EPSS Score
Sep 5, 2022 EPSS Score
Nov 6, 2022 EPSS Score
Jan 8, 2023 EPSS Score
May 13, 2023 EPSS Score

References

https://www.usa.philips.com/healthcare/about/customer-support/product-security url
103182 vdb
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02 url
https://nvd.nist.gov/vuln/detail/CVE-2018-5474 advisory

Open in Interactive Console →