In Philips Alice 6 System version R8.0.2 or prior, when an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct. This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or the ability to execute arbitrary code.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/103537 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSMA-18-086-01 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2018-03-27T00:00:00
Updated: 2018-03-30T09:57:02
Reserved: 2018-01-12T00:00:00
Link: CVE-2018-5451
JSON object: View
NVD Information
Status : Modified
Published: 2018-03-28T17:29:00.337
Modified: 2019-10-09T23:41:23.093
Link: CVE-2018-5451
JSON object: View
Redhat Information
No data.
CWE