Unrated severityNVD Advisory· Published Sep 11, 2020· Updated Aug 4, 2024
Philips Patient Monitoring Devices Cross-site Scripting
CVE-2020-16218
Description
In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is then used as a webpage and served to other users. Successful exploitation could lead to unauthorized access to patient data via a read-only web application.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2B.02, C.02, C.03+ 1 more
- (no CPE)range: B.02, C.02, C.03
- (no CPE)range: B.02
Patches
Vulnerability mechanics
References
2- us-cert.cisa.gov/ics/advisories/icsma-20-254-01mitrex_refsource_MISC
- www.philips.com/productsecuritymitre
News mentions
0No linked articles in our index yet.