PT-2022-10192 · Philips · Philips Vue Pacs

Published

2022-04-01

Updated

2022-04-08

CVE-2021-33024

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Philips Vue PACS versions prior to 12.2.x.x

Description The issue concerns the transmission and storage of authentication credentials using an insecure method, making them susceptible to unauthorized interception and/or retrieval.

Recommendations For Philips Vue PACS versions prior to 12.2.x.x, update to a version that uses a secure method for transmitting and storing authentication credentials.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522

Related Identifiers

CVE-2021-33024

Affected Products

Philips Vue Pacs

PT-2022-10192 · Philips · Philips Vue Pacs

CVE-2021-33024

Weakness Enumeration

Related Identifiers

Affected Products

References · 4