EUVD-2020-8180

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Software in Patient Information Center iX saves user data in CSV format without proper neutralization.

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2020-16214	11 Sep 202012:53	–	cve
Cvelist	CVE-2020-16214 Philips Patient Monitoring Devices Improper Neutralization of Formula Elements in a CSV File	11 Sep 202012:53	–	cvelist
ICS	Philips Patient Monitoring Devices (Update C)	10 Sep 202006:00	–	ics
NVD	CVE-2020-16214	11 Sep 202013:15	–	nvd
Prion	Command injection	11 Sep 202013:15	–	prion
Positive Technologies	PT-2020-14813 · Philips · Patient Information Center Ix	11 Sep 202000:00	–	ptsecurity
RedhatCVE	CVE-2020-16214	22 May 202517:52	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "65481f78-1780-33db-83da-021e98b23659",
        "vendor": {
          "name": "Philips"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "c3967168-344b-3725-b153-5482197795ef",
        "product": {
          "name": "Patient Information Center iX (PICiX)"
        },
        "product_version": "B.02"
      },
      {
        "id": "ce27afae-b110-3f91-b4d2-415138f07855",
        "product": {
          "name": "Patient Information Center iX (PICiX)"
        },
        "product_version": "C.03"
      },
      {
        "id": "dd991bfa-976d-34d4-95f5-89f7bbdafa27",
        "product": {
          "name": "Patient Information Center iX (PICiX)"
        },
        "product_version": "C.02"
      }
    ]
  }
]

Source	Link
us-cert	www.us-cert.cisa.gov/ics/advisories/icsma-20-254-01
philips	www.philips.com/productsecurity
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.15

CVSS 25.8

EPSS0.00141