2 matches found
CVE-2018-8848
Philips e-Alert Unit (non-medical device), Version R2.1 and prior, is affected by CVE-2018-8848 due to incorrect default permissions that expose an object to an unintended actor. This CVE is categorized under CWE-276 (Incorrect Default Permissions). The issue was observed during installation and ...
Philips e-Alert Unit
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit/exploitable from within the same local subnet Vendor: Philips Equipment: Philips e-Alert Unit non-medical device Vulnerabilities: Improper Input Validation, Cross-site Scripting, Information Exposure,...