CVE-2020-16237

Опубликовано: 21 авг. 2020

Источник: nvd

CVSS3: 2.1

CVSS2: 2.1

EPSS Низкий

Описание

Philips SureSigns VS4, A.07.107 and prior receives input or data, but it does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.

Ссылки

https://us-cert.cisa.gov/ics/advisories/icsma-20-233-01
Third Party Advisory
US Government Resource
https://www.philips.com/a-w/security/security-advisories/product-security-2020.html#2020_archive
https://us-cert.cisa.gov/ics/advisories/icsma-20-233-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:philips:suresigns_vs4_firmware:*:*:*:*:*:*:*:*

Версия до a.07.107 (включая)

cpe:2.3:h:philips:suresigns_vs4:-:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00048

Низкий

2.1 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-c39v-2g86-xrr6

CVSS3: 2.1

github

больше 3 лет назад

Philips SureSigns VS4, A.07.107 and prior. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.

EPSS

Процентиль: 15%

0.00048

Низкий

2.1 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-20