Vulnerability Description
Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Log files are accessible over an unauthenticated network connection. By accessing the log files, an attacker is able to gain insights about internals of the patient monitor, the location of the monitor, and wired network configuration.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Draeger | Kappa Firmware | All versions |
| Draeger | Kappa | - |
| Draeger | Infinity Explorer C700 Firmware | All versions |
| Draeger | Infinity Explorer C700 | - |
| Draeger | Delta Xl Firmware | All versions |
| Draeger | Delta Xl | - |
| Draeger | Infinity Delta Firmware | All versions |
| Draeger | Infinity Delta | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/106683Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSMA-19-022-01Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/106683Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSMA-19-022-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-19014?
CVE-2018-19014 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Log files are accessible over an unauthenticated network conn...
How severe is CVE-2018-19014?
CVE-2018-19014 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-19014?
Check the references section above for vendor advisories and patch information. Affected products include: Draeger Kappa Firmware, Draeger Kappa, Draeger Infinity Explorer C700 Firmware, Draeger Infinity Explorer C700, Draeger Delta Xl Firmware.