Philips Update
2945Warning Date
Severity Level
Warning Number
Target Sector
20 September, 2020
● Medium
2020-1807
HealthCare
Description:
Philips has released security update to address multiple vulnerabilities in the following product:
- Clinical Collaboration Platform
- Versions 12.2.1 and prior
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site request forgery (CSRF).
- Exhaustion of available resource.
- Providing unintended actors with inappropriate access to the resource.
- Bypass of a protection mechanism.
Best practice and Recommendations:
The CERT team encourages users to review Philips security advisory and apply the necessary updates: