Vulnerabilities > Philips > VUE Pacs > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-18 | CVE-2023-40223 | Unspecified vulnerability in Philips VUE Pacs 12.2.8.0 Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an unintended sphere of control for that actor. | 8.8 |
| 2022-04-01 | CVE-2021-33018 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Philips products The use of a broken or risky cryptographic algorithm in Philips Vue PACS versions 12.2.x.x and prior is an unnecessary risk that may result in the exposure of sensitive information. | 7.5 |
| 2022-04-01 | CVE-2021-33020 | Operation on a Resource after Expiration or Release vulnerability in Philips products Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its expiration date, which diminishes its safety significantly by increasing the timing window for cracking attacks against that key. | 7.5 |
| 2022-04-01 | CVE-2021-33022 | Cleartext Transmission of Sensitive Information vulnerability in Philips products Philips Vue PACS versions 12.2.x.x and prior transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. | 7.5 |
| 2022-04-01 | CVE-2021-33024 | Insufficiently Protected Credentials vulnerability in Philips products Philips Vue PACS versions 12.2.x.x and prior transmits or stores authentication credentials, but it uses an insecure method susceptible to unauthorized interception and/or retrieval. | 7.5 |