Lucene search

K
cvelistIcscertCVELIST:CVE-2021-33018
HistoryApr 01, 2022 - 10:17 p.m.

CVE-2021-33018 Philips Vue PACS Use of a Broken or Risky Cryptographic Algorithm

2022-04-0122:17:21
CWE-327
icscert
www.cve.org
6
philips
vue pacs
cve-2021-33018
risk
cryptographic algorithm
sensitive information

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

51.7%

The use of a broken or risky cryptographic algorithm in Philips Vue PACS versions 12.2.x.x and prior is an unnecessary risk that may result in the exposure of sensitive information.

CNA Affected

[
  {
    "product": "Vue PACS",
    "vendor": "Philips",
    "versions": [
      {
        "lessThanOrEqual": "12.2.x.x",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Vue MyVue",
    "vendor": "Philips",
    "versions": [
      {
        "lessThanOrEqual": "12.2.x.x",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Vue Speech",
    "vendor": "Philips",
    "versions": [
      {
        "lessThanOrEqual": "12.2.x.x",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Vue Motion",
    "vendor": "Philips",
    "versions": [
      {
        "lessThanOrEqual": "12.2.1.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

51.7%

Related for CVELIST:CVE-2021-33018