CVE-2020-14506: CSRF
First published: Fri Sep 18 2020(Updated: )
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Philips Clinical Collaboration Platform | <=12.2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-14506?
CVE-2020-14506 is a vulnerability in Philips Clinical Collaboration Platform versions 12.2.1 and prior that allows input or data to be processed unsafely and incorrectly.
How severe is CVE-2020-14506?
CVE-2020-14506 has a severity rating of 4.3, which is considered medium.
What software is affected by CVE-2020-14506?
Philips Clinical Collaboration Platform versions 12.2.1 and prior are affected by CVE-2020-14506.
What is the Common Weakness Enumeration (CWE) ID for CVE-2020-14506?
The Common Weakness Enumeration (CWE) ID for CVE-2020-14506 is 352.
Where can I find more information about CVE-2020-14506?
You can find more information about CVE-2020-14506 at the following link: [CISA Advisory](https://us-cert.cisa.gov/ics/advisories/icsma-20-261-01)
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/description
- agent/tags
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/philips
- canonical/philips clinical collaboration platform
- version/philips clinical collaboration platform/12.2.1