Описание
The Philips DoseWise Portal web-based application versions 1.1.7.333 and 2.1.1.3069 stores login credentials in clear text within backend system files. CVSS v3 base score: 6.5, CVSS vector string: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:philips:dosewise:1.1.7.333:*:*:*:*:*:*:*
cpe:2.3:a:philips:dosewise:2.1.1.3069:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00214
Низкий
8.8 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-312
CWE-522
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
The Philips DoseWise Portal web-based application versions 1.1.7.333 and 2.1.1.3069 stores login credentials in clear text within backend system files. CVSS v3 base score: 6.5, CVSS vector string: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.
EPSS
Процентиль: 44%
0.00214
Низкий
8.8 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-312
CWE-522