What is the severity of CVE-2018-14801?

CVE-2018-14801 is considered a high severity vulnerability due to the potential for unauthorized access and configuration changes.

How do I fix CVE-2018-14801?

To fix CVE-2018-14801, ensure your Philips PageWriter devices are updated to the firmware versions released after May 2018.

What devices are affected by CVE-2018-14801?

CVE-2018-14801 affects all versions of the Philips PageWriter TC10, TC20, TC30, TC50, and TC70 prior to the May 2018 firmware update.

What type of access is required to exploit CVE-2018-14801?

Exploitation of CVE-2018-14801 requires both physical access to the device and knowledge of the superuser password.

What can an attacker do if they exploit CVE-2018-14801?

An attacker exploiting CVE-2018-14801 can access and modify all settings on the device, potentially compromising patient safety and data integrity.

Vulnerability/
CVE-2018-14801

high

7.2

CWE

798

22/8/2018

17/9/2024

CVE-2018-14801

First published: Wed Aug 22 2018(Updated: )

In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018, an attacker with both the superuser password and physical access can enter the superuser password that can be used to access and modify all settings on the device, as well as allow the user to reset existing passwords.

Credit: ics-cert@hq.dhs.gov

Affected Software	Affected Version	How to fix
Philips Pagewriter Tc70 Firmware
Philips Pagewriter Tc70
Philips Pagewriter Tc50 Firmware
Philips Pagewriter Tc50
Philips Pagewriter Tc30 Firmware
Philips Pagewriter Tc30
Philips Pagewriter Tc20 Firmware
Philips Pagewriter Tc20
Philips Pagewriter Tc10 Firmware
Philips PageWriter TC10

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-14801?
CVE-2018-14801 is considered a high severity vulnerability due to the potential for unauthorized access and configuration changes.
How do I fix CVE-2018-14801?
To fix CVE-2018-14801, ensure your Philips PageWriter devices are updated to the firmware versions released after May 2018.
What devices are affected by CVE-2018-14801?
CVE-2018-14801 affects all versions of the Philips PageWriter TC10, TC20, TC30, TC50, and TC70 prior to the May 2018 firmware update.
What type of access is required to exploit CVE-2018-14801?
Exploitation of CVE-2018-14801 requires both physical access to the device and knowledge of the superuser password.
What can an attacker do if they exploit CVE-2018-14801?
An attacker exploiting CVE-2018-14801 can access and modify all settings on the device, potentially compromising patient safety and data integrity.

collector/nvd-index
agent/type
agent/softwarecombine
agent/references
agent/author
agent/weakness
agent/severity
agent/tags
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
vendor/philips
canonical/philips pagewriter tc70 firmware
canonical/philips pagewriter tc70
canonical/philips pagewriter tc50 firmware
canonical/philips pagewriter tc50
canonical/philips pagewriter tc30 firmware
canonical/philips pagewriter tc30
canonical/philips pagewriter tc20 firmware
canonical/philips pagewriter tc20
canonical/philips pagewriter tc10 firmware
canonical/philips pagewriter tc10

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.