Vulnerability Description
Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Via a specific dialog it is possible to break out of the kiosk mode and reach the underlying operating system. By breaking out of the kiosk mode, an attacker is able to take control of the operating system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Draeger | Kappa Firmware | All versions |
| Draeger | Kappa | - |
| Draeger | Infinity Explorer C700 Firmware | All versions |
| Draeger | Infinity Explorer C700 | - |
| Draeger | Delta Xl Firmware | All versions |
| Draeger | Delta Xl | - |
| Draeger | Infinity Delta Firmware | All versions |
| Draeger | Infinity Delta | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/106683Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSMA-19-022-01Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/106683Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSMA-19-022-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-19012?
CVE-2018-19012 is a vulnerability with a CVSS score of 7.8 (HIGH). Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Via a specific dialog it is possible to break out of the kios...
How severe is CVE-2018-19012?
CVE-2018-19012 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-19012?
Check the references section above for vendor advisories and patch information. Affected products include: Draeger Kappa Firmware, Draeger Kappa, Draeger Infinity Explorer C700 Firmware, Draeger Infinity Explorer C700, Draeger Delta Xl Firmware.