cnvd - cnvd-2020-53791

CNVD-2020-53791

Vulnerability from cnvd - Published: 2020-09-24

Title

Philips IntelliSpace Cardiovascular和Xcelera权限管理不当漏洞

Description

Philips IntelliSpace Cardiovascular（ISCV）和Xcelera都是荷兰飞利浦（Philips）公司的产品。Philips ISCV是一套心脏影像信息管理系统。Xcelera是它的前身。 Philips ISCV 2.x及之前版本和Xcelera 4.1及之前版本中存在安全漏洞，该漏洞源于程序未能进行正确的权限管理。攻击者可利用该漏洞访问含有可执行文件的文件夹并以本地管理权限执行任意代码。

Severity

中

Formal description

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： https://www.usa.philips.com/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2018-14787

Impacted products

Name
['Philips IntelliSpace Cardiovascular（ISCV） <=2.*', 'Philips Xcelera <=4.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-14787",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14787"
    }
  },
  "description": "Philips IntelliSpace Cardiovascular\uff08ISCV\uff09\u548cXcelera\u90fd\u662f\u8377\u5170\u98de\u5229\u6d66\uff08Philips\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Philips ISCV\u662f\u4e00\u5957\u5fc3\u810f\u5f71\u50cf\u4fe1\u606f\u7ba1\u7406\u7cfb\u7edf\u3002Xcelera\u662f\u5b83\u7684\u524d\u8eab\u3002\n\nPhilips ISCV 2.x\u53ca\u4e4b\u524d\u7248\u672c\u548cXcelera 4.1\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u8fdb\u884c\u6b63\u786e\u7684\u6743\u9650\u7ba1\u7406\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u542b\u6709\u53ef\u6267\u884c\u6587\u4ef6\u7684\u6587\u4ef6\u5939\u5e76\u4ee5\u672c\u5730\u7ba1\u7406\u6743\u9650\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.usa.philips.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-53791",
  "openTime": "2020-09-24",
  "products": {
    "product": [
      "Philips IntelliSpace Cardiovascular\uff08ISCV\uff09 \u003c=2.*",
      "Philips Xcelera \u003c=4.1"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-14787",
  "serverity": "\u4e2d",
  "submitTime": "2018-08-23",
  "title": "Philips IntelliSpace Cardiovascular\u548cXcelera\u6743\u9650\u7ba1\u7406\u4e0d\u5f53\u6f0f\u6d1e"
}

CVE-2018-14787 (GCVE-0-2018-14787)

Vulnerability from cvelistv5 – Published: 2018-08-22 18:00 – Updated: 2024-09-16 18:59

Summary

In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version 2.x or prior and Xcelera Version 4.1 or prior), an attacker with escalated privileges could access folders which contain executables where authenticated users have write permissions, and could then execute arbitrary code with local administrative permissions.

Severity ?

No CVSS data available.

CWE

CWE-269 - IMPROPER PRIVILEGE MANAGEMENT CWE-269

Assigner

icscert

References

URL

Tags

	https://www.usa.philips.com/healthcare/about/cust…	x_refsource_CONFIRM
	https://ics-cert.us-cert.gov/advisories/ICSMA-18-226-01	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	Philips	IntelliSpace Cardiovascular (ISCV) products	Affected: IntelliSpace Cardiovascular, Version 3.1 or prior Affected: Xcelera Version 4.1 or prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T09:38:13.911Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-226-01"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "IntelliSpace Cardiovascular (ISCV) products",
          "vendor": "Philips",
          "versions": [
            {
              "status": "affected",
              "version": "IntelliSpace Cardiovascular, Version 3.1 or prior"
            },
            {
              "status": "affected",
              "version": "Xcelera Version 4.1 or prior"
            }
          ]
        }
      ],
      "datePublic": "2018-08-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In Philips\u0027 IntelliSpace Cardiovascular (ISCV) products (ISCV Version 2.x or prior and Xcelera Version 4.1 or prior), an attacker with escalated privileges could access folders which contain executables where authenticated users have write permissions, and could then execute arbitrary code with local administrative permissions."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-269",
              "description": "IMPROPER PRIVILEGE MANAGEMENT CWE-269",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-08-22T17:57:01",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-226-01"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "DATE_PUBLIC": "2018-08-14T00:00:00",
          "ID": "CVE-2018-14787",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "IntelliSpace Cardiovascular (ISCV) products",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "IntelliSpace Cardiovascular, Version 3.1 or prior"
                          },
                          {
                            "version_value": "Xcelera Version 4.1 or prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Philips"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Philips\u0027 IntelliSpace Cardiovascular (ISCV) products (ISCV Version 2.x or prior and Xcelera Version 4.1 or prior), an attacker with escalated privileges could access folders which contain executables where authenticated users have write permissions, and could then execute arbitrary code with local administrative permissions."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "IMPROPER PRIVILEGE MANAGEMENT CWE-269"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.usa.philips.com/healthcare/about/customer-support/product-security",
              "refsource": "CONFIRM",
              "url": "https://www.usa.philips.com/healthcare/about/customer-support/product-security"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-226-01",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSMA-18-226-01"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2018-14787",
    "datePublished": "2018-08-22T18:00:00Z",
    "dateReserved": "2018-08-01T00:00:00",
    "dateUpdated": "2024-09-16T18:59:28.155Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-53791

CVE-2018-14787 (GCVE-0-2018-14787)

Tags

Sightings

Nomenclature