Lucene search
HistoryJul 18, 2024 - 5:15 p.m.
CVE-2023-40223
philips vue pacs
privilege assignment
flaw
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
20.0%
Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an unintended sphere of control for that actor.
Affected configurations
Node
philipsvue_pacsRange<12.2.8.410
Related
vulnrichment
vulnrichment
CVE-2023-40223 Philips Vue PACS Improper Privilege Management
2024-07-18 16:23:18
cve
cve
CVE-2023-40223
2024-07-18 17:15:03
cvelist
cvelist
CVE-2023-40223 Philips Vue PACS Improper Privilege Management
2024-07-18 16:23:18
ics
ics
Philips Vue PACS
2024-07-18 12:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
20.0%
Related for NVD:CVE-2023-40223