CVE-2021-43550 MEDIUM

CVE-2021-43550: Philips Patient Information Center iX (PIC iX) and Efficia CM Series Use of a Broken or Risky Cryptographic Algorithm

Vendor Philips
Product Efficia CM Series
Weakness CWE-327 · Broken crypto
Published December 27, 2021
Last update September 16, 2024

CVSS base score

5.9/10
Attack vector Adjacent
Attack complexity High
Privileges required None
User interaction None
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

What the vulnerability does

01Description

The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information, which affects the communications between Patient Information Center iX (PIC iX) Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to C.0x and 4.0.

Key dates

02Disclosure timeline

December 27, 2021 CVE published
September 16, 2024 Record updated