MEDIUM🇬🇧 English

CVE-2020-16220

CVSS 4.3v3.1pub. 2020-09-11upd. 2026-02-23

In Patient Information Center iX (PICiX) Versions C.02, C.03, PerformanceBridge Focal Point Version A.01, the product receives input that is expected to be well-formed (i.e., to comply with a certain syntax) but it does not validate or incorrectly validates that the input complies with the syntax, causing the certificate enrollment service to crash. It does not impact monitoring but prevents new devices from enrolling.

oryginał EN
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
  • Philips Patient Information Center Ix

    APP
    Philips
    b.02c.02c.03
  • Philips Performancebridge Focal Point

    APP
    Philips
    a.01
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2020-16222HIGH8.8ten sam produkt

In Patient Information Center iX (PICiX) Version B.02, C.02, C.03, and PerformanceBridge Focal Point Version ...

CVE-2021-43552MEDIUM6.1ten sam produkt

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recove...

CVE-2021-43548MEDIUM6.5ten sam produkt

Patient Information Center iX (PIC iX) Versions C.02 and C.03 receives input or data, but does not validate or...

CVE-2021-43550MEDIUM5.9ten sam produkt

The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of...

CVE-2020-16228MEDIUM6.4ten sam produkt

In Patient Information Center iX (PICiX) Versions C.02 and C.03, PerformanceBridge Focal Point Version A.01, ...