15 matches found
EUVD-2018-6673
Malware in sbrugna...
EUVD-2017-5623
Malware in sbrugna...
EUVD-2018-6671
Malware in sbrugna...
The vulnerability of Philips IntelliSpace Cardiovascular’s image and data management system, related to the use of weak credentials, allows unauthorized access to the records.
The vulnerability of Philips IntelliSpace Cardiovascular’s image and data management system lies in the use of weak credentials. Exploiting this vulnerability could allow an attacker to gain unauthorized access to the user accounts...
CVE-2025-2229 Philips Intellispace Cardiovascular (ISCV) Use of Weak Credentials
A token is created using the username, current date/time, and a fixed AES-128 encryption key, which is the same across all installations...
CVE-2025-2229 Philips Intellispace Cardiovascular (ISCV) Use of Weak Credentials
A token is created using the username, current date/time, and a fixed AES-128 encryption key, which is the same across all installations...
CVE-2025-2230 Philips Intellispace Cardiovascular (ISCV) Improper Authentication
A flaw exists in the Windows login flow where an AuthContext token can be exploited for replay attacks and authentication bypass...
CISA Releases Thirteen Industrial Control Systems Advisories
CISA released thirteen Industrial Control Systems ICS advisories on March 13, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-072-01 Siemens Teamcenter Visualization and Tecnomatrix Plant Simulation...
Philips IntelliSpace Cardiovascular and Xcelera Privilege Mismanagement Vulnerability
Philips IntelliSpace Cardiovascular ISCV and Xcelera are both products of the Dutch company Philips.Philips ISCV is a cardiac imaging information management system.Xcelera is its predecessor. A security vulnerability exists in Philips ISCV version 2.x and earlier and Xcelera version 4.1 and...
CVE-2018-14787
In Philips' IntelliSpace Cardiovascular ISCV products ISCV Version 2.x or prior and Xcelera Version 4.1 or prior, an attacker with escalated privileges could access folders which contain executables where authenticated users have write permissions, and could then execute arbitrary code with local...
Design/Logic Flaw
The workstation logging function in Philips IntelliSpace Cardiovascular ISCV 2.3.0 and earlier and Xcelera R4.1L1 and earlier records domain authentication credentials, which if accessed allows an attacker to use credentials to access the application, or other user entitlements...
CVE-2017-14111
The workstation logging function in Philips IntelliSpace Cardiovascular ISCV 2.3.0 and earlier and Xcelera R4.1L1 and earlier records domain authentication credentials, which if accessed allows an attacker to use credentials to access the application, or other user entitlements...
CVE-2017-14111
The workstation logging function in Philips IntelliSpace Cardiovascular ISCV 2.3.0 and earlier and Xcelera R4.1L1 and earlier records domain authentication credentials, which if accessed allows an attacker to use credentials to access the application, or other user entitlements...
CVE-2017-14111
CVE-2017-14111 affects Philips IntelliSpace Cardiovascular (ISCV) 2.3.0 and earlier and Xcelera R4.1L1 and earlier. The root cause is insufficiently protected credentials: credentials are stored in plaintext in system files, enabling an attacker with elevated privileges to access sensitive data o...
Philips IntelliSpace Cardiovascular System and Xcelera System Plaintext Storage Vulnerability
The Philips IntelliSpace Cardiovascular and Xcelera systems predecessor to IntelliSpace Cardiovascular are comprehensive cardiac imaging and information management software. The Philips IntelliSpace Cardiovascular System and Xcelera System have a plaintext storage vulnerability where credentials...