CVE-2018-19012
Summary
| CVE | CVE-2018-19012 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-01-28 21:29:00 UTC |
| Updated | 2019-10-09 23:37:00 UTC |
| Description | Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Via a specific dialog it is possible to break out of the kiosk mode and reach the underlying operating system. By breaking out of the kiosk mode, an attacker is able to take control of the operating system. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Draeger | Delta Xl | - | All | All | All |
| Hardware | Draeger | Delta Xl | - | All | All | All |
| Operating System | Draeger | Delta Xl Firmware | All | All | All | All |
| Operating System | Draeger | Delta Xl Firmware | All | All | All | All |
| Hardware | Draeger | Infinity Delta | - | All | All | All |
| Hardware | Draeger | Infinity Delta | - | All | All | All |
| Operating System | Draeger | Infinity Delta Firmware | All | All | All | All |
| Operating System | Draeger | Infinity Delta Firmware | All | All | All | All |
| Hardware | Draeger | Infinity Explorer C700 | - | All | All | All |
| Hardware | Draeger | Infinity Explorer C700 | - | All | All | All |
| Operating System | Draeger | Infinity Explorer C700 Firmware | All | All | All | All |
| Operating System | Draeger | Infinity Explorer C700 Firmware | All | All | All | All |
| Hardware | Draeger | Kappa | - | All | All | All |
| Hardware | Draeger | Kappa | - | All | All | All |
| Operating System | Draeger | Kappa Firmware | All | All | All | All |
| Operating System | Draeger | Kappa Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Dräger Infinity Delta | ICS-CERT | MISC | ics-cert.us-cert.gov | Third Party Advisory, US Government Resource |
| Multiple Dräger Products Multiple Security Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.