Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
philips vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-14803
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The Philips e-Alert contains a banner disclosure vulnerability that could allow malicious users to obtain extraneous product information, such as OS and software components, via the HTTP response header that is no...
Philips E-alert Firmware
6.3
CVSSv3
CVE-2020-16198
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. When an attacker claims to have a given identity, the software does not prove or insufficiently proves the claim is correct.
Philips Clinical Collaboration Platform
7.1
CVSSv3
CVE-2020-16247
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.
Philips Clinical Collaboration Platform
4.4
CVSSv3
CVE-2019-10968
Philips Holter 2010 Plus, all versions. A vulnerability has been identified that may allow system options that were not purchased to be enabled.
Philips Zymed Holter 2010
8.8
CVSSv3
CVE-2018-8842
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. The Philips e-Alert communication channel is not encrypted which could...
Philips E-alert Firmware
8.8
CVSSv3
CVE-2018-8844
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The web application does not, or cannot, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
Philips E-alert Firmware
6.1
CVSSv3
CVE-2018-8846
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is then served to other users.
Philips E-alert Firmware
9.8
CVSSv3
CVE-2018-8850
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software does not validate input properly, allowing an malicious user to craft the input in a form that is not expected by the rest of the application. This would lead to parts of the unit receiving unintended...
Philips E-alert Firmware
7.5
CVSSv3
CVE-2018-8854
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software does not properly restrict the size or amount of resources requested or influenced by an actor, which can be used to consume more resources than intended.
Philips E-alert Firmware
9.8
CVSSv3
CVE-2018-8856
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software contains hard-coded cryptographic key, which it uses for encryption of internal data.
Philips E-alert Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »