CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-40704

The product does not require unique and complex passwords to be created during installation. Using Philips's default password could jeopardize the PACS system if the password was hacked or leaked. An attacker could gain access to the database impacting system availability and data integrity.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 15.3%

CVSS Severity

CVSS v3 Score 6.8

References

http://www.philips.com/productsecurity
https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-200-01
http://www.philips.com/productsecurity
https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-200-01

Products affected by CVE-2023-40704

Philips » Vue Pacs » Version: N/A

cpe:2.3:a:philips:vue_pacs:-
Philips » Vue Pacs » Version: 12.2.8.0

cpe:2.3:a:philips:vue_pacs:12.2.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-40704

Products

Pricing

Contact Us