Vulnerabilities > Philips > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-27 | CVE-2021-43552 | Use of Hard-coded Cryptographic Key vulnerability in Philips Patient Information Center IX B.02/C.02/C.03 The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX (PIC iX) Versions B.02, C.02, and C.03. | 2.1 |
| 2021-12-27 | CVE-2021-43550 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Philips Efficia CM Firmware and Patient Information Center IX The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information, which affects the communications between Patient Information Center iX (PIC iX) Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to C.0x and 4.0. | 3.3 |
| 2021-12-27 | CVE-2021-43548 | Improper Input Validation vulnerability in Philips Patient Information Center IX C.02/C.03 Patient Information Center iX (PIC iX) Versions C.02 and C.03 receives input or data, but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly. | 3.3 |
| 2021-11-19 | CVE-2021-42744 | Unspecified vulnerability in Philips MRI 1.5T Firmware and MRI 3T Firmware Philips MRI 1.5T and MRI 3T Version 5.x.x exposes sensitive information to an actor not explicitly authorized to have access. | 2.1 |
| 2021-11-19 | CVE-2021-26248 | Incorrect Ownership Assignment vulnerability in Philips MRI 1.5T Firmware and MRI 3T Firmware Philips MRI 1.5T and MRI 3T Version 5.x.x assigns an owner who is outside the intended control sphere to a resource. | 2.1 |
| 2021-01-26 | CVE-2020-27298 | OS Command Injection vulnerability in Philips products Philips Interventional Workspot (Release 1.3.2, 1.4.0, 1.4.1, 1.4.3, 1.4.5), Coronary Tools/Dynamic Coronary Roadmap/Stentboost Live (Release 1.0), ViewForum (Release 6.3V1L10). | 3.3 |
| 2020-09-18 | CVE-2020-14525 | Unspecified vulnerability in Philips Clinical Collaboration Platform 12.2.1 Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. low complexity philips | 2.7 |
| 2020-09-18 | CVE-2020-16200 | Algorithm Downgrade vulnerability in Philips Clinical Collaboration Platform 12.2.1 Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. | 3.3 |
| 2020-09-18 | CVE-2020-16247 | Exposure of Resource to Wrong Sphere vulnerability in Philips Clinical Collaboration Platform 12.2.1 Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. | 3.6 |
| 2020-09-11 | CVE-2020-16218 | Cross-site Scripting vulnerability in Philips Patient Information Center IX B.02/C.02/C.03 In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is then used as a webpage and served to other users. | 3.5 |