Vulnerability Description
In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, by accessing a specific uniform resource locator (URL) on the webserver, a malicious user may be able to access information in the application without authenticating.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Beaconmedaes | Scroll Medical Air Systems Firmware | < 4107600010.23 |
| Beaconmedaes | Scroll Medical Air Systems | - |
Related Weaknesses (CWE)
References
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-144-01MitigationThird Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-144-01MitigationThird Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-7526?
CVE-2018-7526 is a vulnerability with a CVSS score of 7.5 (HIGH). In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, by accessing a specific uniform resource locator (URL) on the webserver, a malicious user may be able ...
How severe is CVE-2018-7526?
CVE-2018-7526 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-7526?
Check the references section above for vendor advisories and patch information. Affected products include: Beaconmedaes Scroll Medical Air Systems Firmware, Beaconmedaes Scroll Medical Air Systems.