1. Home
  2. CVE Database
  3. CVE-2018-14799
LOW · 3.7

CVE-2018-14799

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, the PageWriter device does not sanitize data entered by user. This can lead to buffer overflow or forma...

Vulnerability Description

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, the PageWriter device does not sanitize data entered by user. This can lead to buffer overflow or format string vulnerabilities.

CVSS Score

3.7

LOW

CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
LOW

Affected Products

VendorProductVersions
PhilipsPagewriter Tc70 Firmware-
PhilipsPagewriter Tc70-
PhilipsPagewriter Tc50 Firmware-
PhilipsPagewriter Tc50-
PhilipsPagewriter Tc30 Firmware-
PhilipsPagewriter Tc30-
PhilipsPagewriter Tc20 Firmware-
PhilipsPagewriter Tc20-
PhilipsPagewriter Tc10 Firmware-
PhilipsPagewriter Tc10-

Related Weaknesses (CWE)

CWE-20CWE-134CWE-119

References

FAQ

What is CVE-2018-14799?

CVE-2018-14799 is a vulnerability with a CVSS score of 3.7 (LOW). In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, the PageWriter device does not sanitize data entered by user. This can lead to buffer overflow or forma...

How severe is CVE-2018-14799?

CVE-2018-14799 has been rated LOW with a CVSS base score of 3.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-14799?

Check the references section above for vendor advisories and patch information. Affected products include: Philips Pagewriter Tc70 Firmware, Philips Pagewriter Tc70, Philips Pagewriter Tc50 Firmware, Philips Pagewriter Tc50, Philips Pagewriter Tc30 Firmware.