CVE-2018-5462

Published Mar 26, 2018

Last updated 3 days ago

Overview

Description
Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an SSL incorrect hostname certificate vulnerability this could allow an attacker to gain unauthorized access to resources and information.
Source
ics-cert@hq.dhs.gov
NVD status
Modified

Risk scores

CVSS 3.0

Type
Primary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity
HIGH

CVSS 2.0

Type
Primary
Base score
5
Impact score
2.9
Exploitability score
10
Vector string
AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

ics-cert@hq.dhs.gov
CWE-310
nvd@nist.gov
CWE-295

Social media

Hype score
Not currently trending

Configurations