Philips Tasy EMR is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain unauthorized access to sensitive information. This may lead to further attacks. Philips Tasy EMR version 3.02.1744 and prior are affected. Philips Tasy WebPortal version 3.02.1757 and prior are affected.
Block external access at the network boundary, unless external parties require service.
Filter access to the affected computer at the network boundary if global access isn’t needed. Restricting access to only trusted computers and networks might greatly reduce the likelihood of a successful exploit.
Deploy network intrusion detection systems to monitor network traffic for malicious activity.
Deploy NIDS to detect and block attacks and anomalous activity such as unexpected traffic. This may indicate exploit attempts.
Updates are available. Please see the references or vendor advisory for more information.
CPE | Name | Operator | Version |
---|---|---|---|
philips tasy emr | eq | 3.02.1744 | |
philips tasy webportal | eq | 3.02.1757 |