← volver
CVE-2018-8857

CVE-2018-8857

EPSS 0.3%CWE-798
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
04 may 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Philips Brilliance CT software (Brilliance 64 version 2.6.2 and prior, Brilliance iCT versions 4.1.6 and prior, Brillance iCT SP versions 3.2.4 and prior, and Brilliance CT Big Bore 2.3.5 and prior) contains fixed credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. An attacker could compromise these credentials and gain access to the system.
Productos afectados
Philips · Brilliance CT Scanners

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://ics-cert.us-cert.gov/advisories/ICSMA-18-123-01https://www.usa.philips.com/healthcare/about/customer-support/product-securityhttp://www.securityfocus.com/bid/104088