CVE-2018-5470

high

Description

Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an unquoted search path or element vulnerability that has been identified, which may allow an authorized local user to execute arbitrary code and escalate their level of privileges.

References

Advisories
More

https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02

http://www.securityfocus.com/bid/103182

https://www.usa.philips.com/healthcare/about/customer-support/product-security

Details

Source: Mitre, NVD

Published: 2018-03-26

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H