PT-2021-23865 · Philips · Patient Information Center Ix+1
Published
2021-12-27
·
Updated
2022-01-12
·
CVE-2021-43550
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Patient Information Center iX (PIC iX) versions C.02 through C.03
Efficia CM Series revisions A.01 through C.0x
Efficia CM Series version 4.0
Description
The use of a broken or risky cryptographic algorithm poses an unnecessary risk, potentially exposing sensitive information. This issue affects communications between the affected systems.
Recommendations
For Patient Information Center iX (PIC iX) versions C.02 through C.03, consider updating the cryptographic algorithm to a more secure one.
For Efficia CM Series revisions A.01 through C.0x, update the cryptographic algorithm to mitigate the risk.
For Efficia CM Series version 4.0, update the cryptographic algorithm to a secure alternative.
As a temporary workaround, consider restricting access to sensitive information until a secure cryptographic algorithm is implemented.
Fix
Use of a Broken Cryptographic Algorithm
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Efficia Cm Series
Patient Information Center Ix