Описание
In Patient Information Center iX (PICiX) Version B.02, C.02, C.03, and PerformanceBridge Focal Point Version A.01, when an actor claims to have a given identity, the software does not prove or insufficiently proves the claim is correct.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:philips:patient_information_center_ix:b.02:*:*:*:*:*:*:*
cpe:2.3:a:philips:patient_information_center_ix:c.02:*:*:*:*:*:*:*
cpe:2.3:a:philips:patient_information_center_ix:c.03:*:*:*:*:*:*:*
cpe:2.3:a:philips:performancebridge_focal_point:a.01:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00076
Низкий
8.8 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, PerformanceBridge Focal Point Version A.01, IntelliVue patient monitors MX100, MX400-MX850, and MP2-MP90 Versions N and prior, IntelliVue X3 and X2 Versions N and prior. When an actor claims to have a given identity, the software does not prove or insufficiently proves the claim is correct.
EPSS
Процентиль: 23%
0.00076
Низкий
8.8 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-287