CVSS: 8.2EPSS: 0%CPEs: 4EXPL: 0CVE-2021-33020 – Philips Vue PACS Use of a Key Past its Expiration Date
https://notcve.org/view.php?id=CVE-2021-33020
Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its expiration date, which diminishes its safety significantly by increasing the timing window for cracking attacks against that key. Philips Vue PACS versiones 12.2.x.x y anteriores, de usan una clave criptográfica o una contraseña que ya ha caducado, lo que disminuye significativamente su seguridad al aumentar la ventana de tiempo para los ataques de cracking contra esa clave • http://www.philips.com/productsecurity https://www.cisa.gov/uscert/ics/advisories/icsma-21-187-01 • CWE-324: Use of a Key Past its Expiration Date CWE-672: Operation on a Resource after Expiration or Release •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-27501 – Philips Vue PACS Improper Adherence to Coding Standards
https://notcve.org/view.php?id=CVE-2021-27501
Philips Vue PACS versions 12.2.x.x and prior does not follow certain coding rules for development, which can lead to resultant weaknesses or increase the severity of the associated vulnerabilities. Philips Vue PACS versiones 12.2.x.x y anteriores, no siguen determinadas reglas de codificación para el desarrollo, lo que puede conllevar a debilidades resultantes o aumentar la gravedad de las vulnerabilidades asociadas • http://www.philips.com/productsecurity https://www.cisa.gov/uscert/ics/advisories/icsma-21-187-01 • CWE-710: Improper Adherence to Coding Standards •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-27493 – Philips Vue PACS
https://notcve.org/view.php?id=CVE-2021-27493
Philips Vue PACS versions 12.2.x.x and prior does not ensure or incorrectly ensures structured messages or data are well formed and that certain security properties are met before being read from an upstream component or sent to a downstream component. Philips Vue PACS versiones 12.2.x.x y anteriores, no asegura o asegura incorrectamente que los mensajes o datos estructurados estén bien formados y que sean cumplidas determinadas propiedades de seguridad antes de ser leídos desde un componente ascendente o enviados a un componente descendente • http://www.philips.com/productsecurity https://www.cisa.gov/uscert/ics/advisories/icsma-21-187-01 •