CVE-2018-5451

CVE-2018-5451

Vendor Philips
Product Philips Alice 6 System
Weakness CWE-287 · Improper authentication
Published March 28, 2018
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

In Philips Alice 6 System version R8.0.2 or prior, when an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct. This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or the ability to execute arbitrary code.

Key dates

02Disclosure timeline

March 28, 2018 CVE published
September 17, 2024 Record updated