Untrusted SSL Certificate Vulnerability in Philips IntelliSpace Portal
CVE-2018-5464

7.5HIGH

Key Information:

Vendor

Philips
Status
Philips Intellispace Portal
Vendor
CVE Published:
26 March 2018

What is CVE-2018-5464?

The Philips IntelliSpace Portal versions 8.0.x and 7.0.x are exposed to an untrusted SSL certificate vulnerability, allowing potential attackers to exploit this weakness. This exposure can lead to unauthorized access to sensitive resources and information, posing significant risks to data integrity and privacy. It is crucial for users and organizations utilizing these versions to assess their security protocols and update configurations to protect against unauthorized access.

Affected Version(s)

Philips IntelliSpace Portal 8.0.x

Philips IntelliSpace Portal 7.0.x

References

https://www.usa.philips.com/healthcare/about/customer-sup...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/103182
vdb-entryx_refsource_BID
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.