| Severity | Low |
| Patch available | NO |
| Number of vulnerabilities | 2 |
| CVE ID | CVE-2018-14799 CVE-2018-14801 |
| CVSSv3 |
5.3 [CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:W/RC:C] 5.5 [CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:W/RC:C] |
| CWE ID |
CWE-120 CWE-798 |
| Exploitation vector | Local |
| Public exploit | Not available |
| Vulnerable software |
PageWriter TC70 PageWriter TC50 PageWriter TC30 PageWriter TC20 PageWriter TC10 |
| Vulnerable software versions |
PageWriter TC70 - PageWriter TC50 - PageWriter TC30 - PageWriter TC20 - PageWriter TC10 - |
| Vendor URL | Philips |
The vulnerability allows a local unauthenticated attacker to bypass security restrictions on the target system.
The weakness exists due to boundary error or format string when handling malicious input. A local attacker can supply specially crafted data and trigger memory corruption to access and modify settings on the device.
Philips plans an update to correct these issues in the release scheduled for mid-year 2019.
Philips has also provided the following information regarding an operating system that is no longer supported by the operating system manufacturer:
Philips offers the following additional mitigation advice:
The vulnerability allows a physical attacker with superuser privileges to bypass security restrictions on the target system.
The weakness exists due to use of hardcoded credentials. A physical attacker can enter the superuser password that can be used to access and modify all settings on the device, as well as to reset existing passwords.
Philips plans an update to correct these issues in the release scheduled for mid-year 2019.
Philips has also provided the following information regarding an operating system that is no longer supported by the operating system manufacturer:
Philips offers the following additional mitigation advice: