Описание
Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an unquoted search path or element vulnerability that has been identified, which may allow an authorized local user to execute arbitrary code and escalate their level of privileges.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:philips:intellispace_portal:8.0:*:*:*:*:*:*:*
cpe:2.3:a:philips:intellispace_portal:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00129
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-428
CWE-426
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an unquoted search path or element vulnerability that has been identified, which may allow an authorized local user to execute arbitrary code and escalate their level of privileges.
EPSS
Процентиль: 33%
0.00129
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-428
CWE-426