HIGH🇬🇧 English

CVE-2021-33018

CVSS 7.5v3.1pub. 2022-04-01upd. 2024-11-21

The use of a broken or risky cryptographic algorithm in Philips Vue PACS versions 12.2.x.x and prior is an unnecessary risk that may result in the exposure of sensitive information.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Philips Myvue

    APP
    Philips
    < 12.2.1.5
  • Philips Speech

    APP
    Philips
    < 12.2.8.0
  • Philips Vue Motion

    APP
    Philips
    < 12.2.1.5
  • Philips Vue Pacs

    APP
    Philips
    < 12.2.8.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2021-33020HIGH8.2ten sam produkt

Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its expiration date, wh...

CVE-2021-33022HIGH7.5ten sam produkt

Philips Vue PACS versions 12.2.x.x and prior transmits sensitive or security-critical data in cleartext in a c...

CVE-2021-27501HIGH7.5ten sam produkt

Philips Vue PACS versions 12.2.x.x and prior does not follow certain coding rules for development, which can l...

CVE-2023-40704MEDIUM5.7ten sam produkt

The product does not require unique and complex passwords to be created during installation. Using Philips's ...

CVE-2021-39369MEDIUM6.5ten sam produkt

In Philips (formerly Carestream) Vue MyVue PACS through 12.2.x.x, the VideoStream function allows Path Travers...