CVE-2018-5470
Philips IntelliSpace Portal (ISP) is affected by CVE-2018-5470 due to an unquoted search path/element vulnerability (CWE-428) in all 8.0.x and 7.0.x versions. An authorized local user could execute arbitrary code and escalate privileges. The NVD CVSS v3 base score is 7.8 (LOCAL, Privileges Requir...