CVE-2019-18241

Name of the Vulnerable Software and Affected Versions Philips IntelliBridge EC40 versions all Philips IntelliBridge EC80 versions all Philips IntelliBridge EC40 Hub versions all Philips IntelliBridge EC80 Hub versions all

Description The issue concerns the SSH server configuration in the affected products, which allows weak ciphers. This could enable an unauthorized attacker with access to the network to capture and replay the session, potentially gaining unauthorized access to the hub.

Recommendations For Philips IntelliBridge EC40, consider disabling the use of weak ciphers in the SSH server configuration until a patch is available. For Philips IntelliBridge EC80, consider disabling the use of weak ciphers in the SSH server configuration until a patch is available. For Philips IntelliBridge EC40 Hub, restrict access to the SSH server to minimize the risk of exploitation. For Philips IntelliBridge EC80 Hub, restrict access to the SSH server to minimize the risk of exploitation.