Code injection

2019-09-1220:15:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C) and WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C). The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code.

CPENameOperatorVersion
intellivue_mp_monitors_mp20-mp90_firmwareeq.3.9-a
intellivue_mp_monitors_mp2\\/x2_firmwareeq1.9.97
intellivue_mp_monitors_mp5\\/5sc_firmwareeq.3.9-a
intellivue_mp_monitors_mx800\\/700\\/600_firmwareeq.1.9-a

Name	Operator	Version
intellivue_mp_monitors_mp20-mp90_firmware	eq	.3.9-a
intellivue_mp_monitors_mp2\\/x2_firmware	eq	1.9.97
intellivue_mp_monitors_mp5\\/5sc_firmware	eq	.3.9-a
intellivue_mp_monitors_mx800\\/700\\/600_firmware	eq	.1.9-a

References

www.us-cert.gov/ics/advisories/icsma-19-255-01