The Philips DoseWise Portal app v1.1.7.333 and v2.1.1.3069 backend database uses hard-coded credentials, allowing remote attackers to gain access. CVSS v3 base score: 9.
Reporter | Title | Published | Views | Family All 4 |
---|---|---|---|---|
![]() | Hardcoded credentials | 24 Apr 201815:29 | – | prion |
![]() | CVE-2017-9656 | 24 Apr 201815:00 | – | cvelist |
![]() | CVE-2017-9656 | 24 Apr 201815:29 | – | nvd |
![]() | ICSMA-17-229-01_Philips' DoseWise Portal Vulnerabilities | 17 Aug 201700:00 | – | ics |
[
{
"product": "DoseWise Portal",
"vendor": "Philips",
"versions": [
{
"status": "affected",
"version": "1.1.7.333"
},
{
"status": "affected",
"version": "2.1.1.3069"
}
]
}
]
Source | Link |
---|---|
ics-cert | www.ics-cert.us-cert.gov/advisories/ICSMA-17-229-01 |
securityfocus | www.securityfocus.com/bid/100471 |
philips | www.philips.com/productsecurity |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo