CVE-2020-16247

Philips Clinical Collaboration Platform Configuration

CVSS 6.8 MEDIUMEPSS 0.3%CWE-16

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 6.8EPSS 0.3%KEV nãoPoC —Patch —

Lifecycle

Sep 18, 2020Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Philips Clinical Collaboration Platform, Versions 12.2.1 and prior, exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Philips · Clinical Collaboration Platform

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://us-cert.cisa.gov/ics/advisories/icsma-20-261-01 https://www.philips.com/a-w/security/security-advisories/product-security-2020.html#2020_archive