CVE-2020-14477

Summary

In Philips Ultrasound ClearVue Versions 3.2 and prior, Ultrasound CX Versions 5.0.2 and prior, Ultrasound EPIQ/Affiniti Versions VM5.0 and prior, Ultrasound Sparq Version 3.0.2 and prior and Ultrasound Xperius all versions, an attacker may use an alternate path or channel that does not require authentication of the alternate service login to view or modify information.

Affected Software

VendorProductVersion RangeStatus
PhilipsUltrasound ClearVue0 < versions 3.2affected
PhilipsUltrasound CX0 < versions 5.0.2affected
PhilipsUltrasound EPIQ/Affiniti0 < versions VM5.0affected
PhilipsUltrasound Sparq0 < version 3.0.2affected
PhilipsUltrasound Xperiusall versionsaffected

Weaknesses

  • CWE-288: CWE-288

ADP Enrichment

CVE Program Container

Additional References

References