CVE-2018-14803 Vulnerability Details

  /     /     /  

CVE-2018-14803 Metadata Quick Info

CVE Published: 26/09/2018 | CVE Updated: 17/09/2024 | CVE Year: 2018
Source: icscert | Vendor: Philips | Product: e-Alert Unit (non-medical device)
Status : PUBLISHED

---

CVE-2018-14803 Description

Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The Philips e-Alert contains a banner disclosure vulnerability that could allow attackers to obtain extraneous product information, such as OS and software components, via the HTTP response header that is normally not available to the attacker, but might be useful information in an attack.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-200
CWE Name: INFORMATION EXPOSURE CWE-200
Source: Philips

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).