Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its expiration date, which diminishes its safety significantly by increasing the timing window for cracking attacks against that key.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:NPhilips Myvue
APPPhilips< 12.2.1.5Philips Speech
APPPhilips< 12.2.8.0Philips Vue Motion
APPPhilips< 12.2.1.5Philips Vue Pacs
APPPhilips< 12.2.8.0
Related vulnerabilities
The use of a broken or risky cryptographic algorithm in Philips Vue PACS versions 12.2.x.x and prior is an unn...
Philips Vue PACS versions 12.2.x.x and prior transmits sensitive or security-critical data in cleartext in a c...
Philips Vue PACS versions 12.2.x.x and prior does not follow certain coding rules for development, which can l...
The product does not require unique and complex passwords to be created during installation. Using Philips's ...
In Philips (formerly Carestream) Vue MyVue PACS through 12.2.x.x, the VideoStream function allows Path Travers...