CVE-2018-19012 Information

Description

Drager Infinity Delta Infinity Delta all versions Delta XL all versions Kappa all version and Infinity Explorer C700 all versions. Via a specific dialog it is possible to break out of the kiosk mode and reach the underlying operating system. By breaking out of the kiosk mode an attacker is able to take control of the operating system.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

http://www.securityfocus.com/bid/106683 https://ics-cert.us-cert.gov/advisories/ICSMA-19-022-01

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8