Philips MRI 1.5T and 3T Information Exposure
CVE-2021-42744

6.2MEDIUM

Key Information:

Vendor
Philips
Status
Mri 1.5t
Mri 3t
Vendor
CVE Published:
19 November 2021

Summary

Philips MRI 1.5T and MRI 3T Version 5.x.x exposes sensitive information to an actor not explicitly authorized to have access.

Affected Version(s)

MRI 1.5T All 5.x.x

MRI 3T 5.x.x

References

https://us-cert.cisa.gov/ics/advisories/icsma-21-313-01
x_refsource_MISC
https://www.usa.philips.com/healthcare/about/customer-sup...
x_refsource_MISC

CVSS V3.1

Score:
6.2
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Michael Aguilar, a Secureworks Adversary Group consultant, reported these vulnerabilities to Philips.
.