CVE-2018-10601
Severity Score
8.2
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M, IntelliVue Patient Monitors MX (MX400-550) Rev J-M and (X3/MX100 for Rev M only), and Avalon Fetal/Maternal Monitors FM20/FM30/FM40/FM50 with software Revisions F.0, G.0 and J.3 have a vulnerability that exposes an "echo" service, in which an attacker-sent buffer to an attacker-chosen device address within the same subnet is copied to the stack with no boundary checks, hence resulting in stack overflow.
IntelliVue Patient Monitors MP Series (incluyendo MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M, IntelliVue Patient Monitors MX (MX400-550) Rev J-M y (X3/MX100 solo para Rev M) y Avalon Fetal/Maternal Monitors FM20/FM30/FM40/FM50 con software en Revisions F.0, G.0 y J.3 tienen una vulnerabilidad que expone un servicio "echo" por el cual un búfer enviado por el atacante a una dirección de dispositivo en la misma subred elegida por el atacante se copia a la pila sin comprobaciones de límites, lo que resulta en un desbordamiento de pila.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2018-05-01 CVE Reserved
- 2018-06-05 CVE Published
- 2023-03-07 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-121: Stack-based Buffer Overflow
- CWE-787: Out-of-bounds Write
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://ics-cert.us-cert.gov/advisories/ICSMA-18-156-01 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Philips Search vendor "Philips" | Intellivue Mp2 Firmware Search vendor "Philips" for product "Intellivue Mp2 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mp2 Search vendor "Philips" for product "Intellivue Mp2" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue X2 Firmware Search vendor "Philips" for product "Intellivue X2 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue X2 Search vendor "Philips" for product "Intellivue X2" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mp30 Firmware Search vendor "Philips" for product "Intellivue Mp30 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mp30 Search vendor "Philips" for product "Intellivue Mp30" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mp50 Firmware Search vendor "Philips" for product "Intellivue Mp50 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mp50 Search vendor "Philips" for product "Intellivue Mp50" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mp70 Firmware Search vendor "Philips" for product "Intellivue Mp70 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mp70 Search vendor "Philips" for product "Intellivue Mp70" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Np90 Firmware Search vendor "Philips" for product "Intellivue Np90 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Np90 Search vendor "Philips" for product "Intellivue Np90" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mx700 Firmware Search vendor "Philips" for product "Intellivue Mx700 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mx700 Search vendor "Philips" for product "Intellivue Mx700" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mx800 Firmware Search vendor "Philips" for product "Intellivue Mx800 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mx800 Search vendor "Philips" for product "Intellivue Mx800" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mx400 Firmware Search vendor "Philips" for product "Intellivue Mx400 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mx400 Search vendor "Philips" for product "Intellivue Mx400" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mx450 Firmware Search vendor "Philips" for product "Intellivue Mx450 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mx450 Search vendor "Philips" for product "Intellivue Mx450" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mx500 Firmware Search vendor "Philips" for product "Intellivue Mx500 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mx500 Search vendor "Philips" for product "Intellivue Mx500" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mx550 Firmware Search vendor "Philips" for product "Intellivue Mx550 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mx550 Search vendor "Philips" for product "Intellivue Mx550" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue X3 Firmware Search vendor "Philips" for product "Intellivue X3 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue X3 Search vendor "Philips" for product "Intellivue X3" | - | - |
Safe
|
| Philips Search vendor "Philips" | Intellivue Mx100 Firmware Search vendor "Philips" for product "Intellivue Mx100 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Intellivue Mx100 Search vendor "Philips" for product "Intellivue Mx100" | - | - |
Safe
|
| Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm20 Firmware Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm20 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm20 Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm20" | - | - |
Safe
|
| Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm30 Firmware Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm30 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm30 Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm30" | - | - |
Safe
|
| Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm40 Firmware Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm40 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm40 Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm40" | - | - |
Safe
|
| Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm50 Firmware Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm50 Firmware" | - | - |
Affected
| in | Philips Search vendor "Philips" | Avalon Fetal\/maternal Monitors Fm50 Search vendor "Philips" for product "Avalon Fetal\/maternal Monitors Fm50" | - | - |
Safe
|