Lucene search

K
PhilipsClinical Collaboration Platform

8 matches found

CVE
CVE
added 2025/06/02 6:15 p.m.46 views

CVE-2025-27953

An issue in Clinical Collaboration Platform 12.2.1.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the session management component.

6.5CVSS7.2AI score0.00113EPSS
CVE
CVE
added 2025/06/02 6:15 p.m.42 views

CVE-2025-27954

An issue in Clinical Collaboration Platform 12.2.1.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the usertoken function of default.aspx.

6.5CVSS7.4AI score0.0012EPSS
CVE
CVE
added 2025/06/02 6:15 p.m.41 views

CVE-2025-27955

Clinical Collaboration Platform 12.2.1.5 has a weak logout system where the session token remains valid after logout and allows a remote attacker to obtain sensitive information and execute arbitrary code.

6.5CVSS7AI score0.00104EPSS
CVE
CVE
added 2020/09/18 6:15 p.m.40 views

CVE-2020-16200

Philips Clinical Collaboration Platform, Versions 12.2.1 and prior, does not properly control the allocation and maintenance of a limitedresource, thereby enabling an attacker to influence the amount ofresources consumed, eventually leading to the exhaustion of availableresources.

6.5CVSS6.6AI score0.00071EPSS
CVE
CVE
added 2020/09/18 6:15 p.m.35 views

CVE-2020-16198

When an attacker claims to have a given identity, Philips Clinical Collaboration Platform, Versions 12.2.1 and prior,does not prove or insufficiently proves the claim is correct.

6.3CVSS5.8AI score0.0006EPSS
CVE
CVE
added 2020/09/18 6:15 p.m.33 views

CVE-2020-14506

Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.

4.3CVSS4.1AI score0.00057EPSS
CVE
CVE
added 2020/09/18 6:15 p.m.31 views

CVE-2020-16247

Philips Clinical Collaboration Platform, Versions 12.2.1 and prior, exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

7.1CVSS6.7AI score0.00054EPSS
CVE
CVE
added 2020/09/18 6:15 p.m.29 views

CVE-2020-14525

Philips Clinical Collaboration Platform, Versions 12.2.1 and prior, does not neutralize or incorrectly neutralizes user-controllable inputbefore it is placed in output used as a webpage that is served to otherusers.

3.5CVSS4.3AI score0.00088EPSS