CVE-2020-14506 LOW

CVE-2020-14506: Philips Clinical Collaboration Platform Cross-site Request Forgery

Vendor Philips
Product Clinical Collaboration Platform
Weakness CWE-352 · CSRF
Published September 18, 2020
Last update June 4, 2025

CVSS base score

3.4/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N

What the vulnerability does

01Description

Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.

Key dates

02Disclosure timeline

September 18, 2020 CVE published
June 4, 2025 Record updated