Vulnerability Description
An issue was found in Philips Veradius Unity, Pulsera, and Endura Dual WAN Router, Veradius Unity (718132) with wireless option (shipped between 2016-August 2018), Veradius Unity (718132) with ViewForum option (shipped between 2016-August 2018), Pulsera (718095) and Endura (718075) with wireless option (shipped between 26-June-2017 through 07-August 2018), Pulsera (718095) and Endura (718075) with ViewForum option (shipped between 26-June-2017 through 07-August 2018). The router software uses an encryption scheme that is not strong enough for the level of protection required.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Philips | Veradius Unity Firmware | - |
| Philips | Veradius Unity | - |
| Philips | Pulsera Firmware | - |
| Philips | Pulsera | - |
| Philips | Endura Firmware | - |
| Philips | Endura | - |
Related Weaknesses (CWE)
References
- https://www.us-cert.gov/ics/advisories/icsma-19-353-01Third Party AdvisoryUS Government Resource
- https://www.us-cert.gov/ics/advisories/icsma-19-353-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2019-18263?
CVE-2019-18263 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An issue was found in Philips Veradius Unity, Pulsera, and Endura Dual WAN Router, Veradius Unity (718132) with wireless option (shipped between 2016-August 2018), Veradius Unity (718132) with ViewFor...
How severe is CVE-2019-18263?
CVE-2019-18263 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-18263?
Check the references section above for vendor advisories and patch information. Affected products include: Philips Veradius Unity Firmware, Philips Veradius Unity, Philips Pulsera Firmware, Philips Pulsera, Philips Endura Firmware.