Vulnerabilities > Philips > E Alert Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-04-01 CVE-2022-0922 Missing Authentication for Critical Function vulnerability in Philips E-Alert Firmware 2.1
The software does not perform any authentication for critical system functionality.
low complexity
philips CWE-306
6.5
6.5
2018-09-26 CVE-2018-8856 Use of Hard-coded Credentials vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-798
critical
 9.8
9.8
2018-09-26 CVE-2018-8854 Resource Exhaustion vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-400
7.5
7.5
2018-09-26 CVE-2018-8852 Session Fixation vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-384
8.8
8.8
2018-09-26 CVE-2018-8850 Improper Input Validation vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-20
critical
 9.8
9.8
2018-09-26 CVE-2018-8848 Incorrect Permission Assignment for Critical Resource vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-732
7.5
7.5
2018-09-26 CVE-2018-8846 Cross-site Scripting vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-79
6.1
6.1
2018-09-26 CVE-2018-8844 Cross-Site Request Forgery (CSRF) vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-352
8.8
8.8
2018-09-26 CVE-2018-8842 Cleartext Transmission of Sensitive Information vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
low complexity
philips CWE-319
8.8
8.8
2018-09-26 CVE-2018-14803 Information Exposure vulnerability in Philips E-Alert Firmware 2.1/R2.1
Philips e-Alert Unit (non-medical device), Version R2.1 and prior.
network
low complexity
philips CWE-200
5.3
5.3