{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-23T21:33:15.004","vulnerabilities":[{"cve":{"id":"CVE-2018-7518","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2018-05-24T20:29:00.447","lastModified":"2026-06-17T02:03:17.340","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, an attacker with network access to the integrated web server could retrieve default or user defined credentials stored and transmitted in an insecure manner."},{"lang":"es","value":"En TotalAlert Web Application en BeaconMedaes Scroll Medical Air Systems en versiones anteriores a la v4107600010.23, un atacante con acceso de red al servidor web integrado podría recuperar credenciales por defecto o definidas por los usuarios que se almacenan y transmiten de forma no segura."}],"affected":[{"source":"ics-cert@hq.dhs.gov","affectedData":[{"vendor":"ICS-CERT","product":"BeaconMedæs TotalAlert Scroll Medical Air Systems web application","versions":[{"version":"All versions prior to version 4107600010.23","status":"affected"}]}]}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-522"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-522"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:beaconmedaes:scroll_medical_air_systems_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"4107600010.23","matchCriteriaId":"2BE7F25F-BC30-4137-A5CE-EBEA26450853"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:beaconmedaes:scroll_medical_air_systems:-:*:*:*:*:*:*:*","matchCriteriaId":"8D46D4D9-6B47-496C-999B-FA016BABE621"}]}]}],"references":[{"url":"https://ics-cert.us-cert.gov/advisories/ICSMA-18-144-01","source":"ics-cert@hq.dhs.gov","tags":["Mitigation","Third Party Advisory","US Government Resource"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSMA-18-144-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory","US Government Resource"]}]}}]}