Vulnerability Description
In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, an attacker with network access to the integrated web server could retrieve default or user defined credentials stored and transmitted in an insecure manner.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Beaconmedaes | Scroll Medical Air Systems Firmware | < 4107600010.23 |
| Beaconmedaes | Scroll Medical Air Systems | - |
Related Weaknesses (CWE)
References
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-144-01MitigationThird Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-144-01MitigationThird Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-7518?
CVE-2018-7518 is a vulnerability with a CVSS score of 9.8 (CRITICAL). In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, an attacker with network access to the integrated web server could retrieve default or user defined cr...
How severe is CVE-2018-7518?
CVE-2018-7518 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-7518?
Check the references section above for vendor advisories and patch information. Affected products include: Beaconmedaes Scroll Medical Air Systems Firmware, Beaconmedaes Scroll Medical Air Systems.