← volver
CVE-2021-33020

Philips Vue PACS Use of a Key Past its Expiration Date

CVSS 8.2 HIGHEPSS 0.6%CWE-324
Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its expiration date, which diminishes its safety significantly by increasing the timing window for cracking attacks against that key.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Productos afectados
Philips · Vue MotionPhilips · Vue MyVuePhilips · Vue PACSPhilips · Vue Speech

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.cisa.gov/uscert/ics/advisories/icsma-21-187-01http://www.philips.com/productsecurity