VYPR

Patient Information Center iX

by Philips

CVEs (10)

  • CVE-2021-43550Dec 27, 2021
    risk 0.00cvss epss 0.00

    The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information, which affects the communications between Patient Information Center iX (PIC iX) Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to…

  • CVE-2021-43548Dec 27, 2021
    risk 0.00cvss epss 0.00

    Patient Information Center iX (PIC iX) Versions C.02 and C.03 receives input or data, but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.

  • CVE-2021-43552Dec 27, 2021
    risk 0.00cvss epss 0.00

    The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX (PIC iX) Versions B.02, C.02, and C.03.

  • CVE-2020-16212Sep 11, 2020
    risk 0.00cvss epss 0.00

    In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource. The application on the surveillance station operates in kiosk mode, which is…

  • CVE-2020-16220Sep 11, 2020
    risk 0.00cvss epss 0.00

    In Patient Information Center iX (PICiX) Versions C.02, C.03, PerformanceBridge Focal Point Version A.01, the product receives input that is expected to be well-formed (i.e., to comply with a certain syntax) but it does not validate or incorrectly validates that the input …

  • CVE-2020-16224Sep 11, 2020
    risk 0.00cvss epss 0.01

    In Patient Information Center iX (PICiX) Versions C.02, C.03, the software parses a formatted message or structure but does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data, causing the application on the …

  • CVE-2020-16228Sep 11, 2020
    risk 0.00cvss epss 0.00

    In Patient Information Center iX (PICiX) Versions C.02 and C.03, PerformanceBridge Focal Point Version A.01, IntelliVue patient monitors MX100, MX400-MX550, MX750, MX850, and IntelliVue X3 Versions N and prior, the software does not check or incorrectly checks the revocation …

  • CVE-2020-16222Sep 11, 2020
    risk 0.00cvss epss 0.01

    In Patient Information Center iX (PICiX) Version B.02, C.02, C.03, and PerformanceBridge Focal Point Version A.01, when an actor claims to have a given identity, the software does not prove or insufficiently proves the claim is correct.

  • CVE-2020-16214Sep 11, 2020
    risk 0.00cvss epss 0.01

    In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the software saves user-provided information into a comma-separated value (CSV) file, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as a command when the…

  • CVE-2020-16218Sep 11, 2020
    risk 0.00cvss epss 0.01

    In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is then used as a webpage and served to other users. Successful exploitation could lead…