CVE-2018-19012

Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Via a specific dialog it is possible to break out of the kiosk mode and reach the underlying operating system. By breaking out of the kiosk mode, an attacker is able to take control of the operating system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
icscertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
VendorProductVersion
draegerkappa_firmware
*
draegerinfinity_explorer_c700_firmware
*
draegerdelta_xl_firmware
*
draegerinfinity_delta_firmware
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/106683
https://ics-cert.us-cert.gov/advisories/ICSMA-19-022-01
http://www.securityfocus.com/bid/106683
https://ics-cert.us-cert.gov/advisories/ICSMA-19-022-01