1. Home
  2. CVE Database
  3. CVE-2018-14801
MEDIUM · 6.2

CVE-2018-14801

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, an attacker with both the superuser password and physical access can enter the superuser password that ...

Vulnerability Description

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, an attacker with both the superuser password and physical access can enter the superuser password that can be used to access and modify all settings on the device, as well as allow the user to reset existing passwords.

CVSS Score

6.2

MEDIUM

CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
PhilipsPagewriter Tc70 Firmware-
PhilipsPagewriter Tc70-
PhilipsPagewriter Tc50 Firmware-
PhilipsPagewriter Tc50-
PhilipsPagewriter Tc30 Firmware-
PhilipsPagewriter Tc30-
PhilipsPagewriter Tc20 Firmware-
PhilipsPagewriter Tc20-
PhilipsPagewriter Tc10 Firmware-
PhilipsPagewriter Tc10-

Related Weaknesses (CWE)

CWE-798

References

FAQ

What is CVE-2018-14801?

CVE-2018-14801 is a vulnerability with a CVSS score of 6.2 (MEDIUM). In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, an attacker with both the superuser password and physical access can enter the superuser password that ...

How severe is CVE-2018-14801?

CVE-2018-14801 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-14801?

Check the references section above for vendor advisories and patch information. Affected products include: Philips Pagewriter Tc70 Firmware, Philips Pagewriter Tc70, Philips Pagewriter Tc50 Firmware, Philips Pagewriter Tc50, Philips Pagewriter Tc30 Firmware.