CVE-2021-43550: Philips Patient Information Center iX (PIC iX) and Efficia CM Series Use of a Broken or Risky Cryptographic Algorithm
First published: Thu Nov 18 2021(Updated: )
The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information, which affects the communications between Patient Information Center iX (PIC iX) Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to C.0x and 4.0.
Credit: ics-cert@hq.dhs.gov ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Philips Patient Information Center Ix | =c.02 | |
| Philips Patient Information Center Ix | =c.03 | |
| Philips Efficia Cm Firmware | >=a.01<=c.0x | |
| Philips Efficia Cm Firmware | =4.0 | |
| Philips Efficia Cm | ||
| All of | ||
| Any of | ||
| Philips Efficia Cm Firmware | >=a.01<=c.0x | |
| Philips Efficia Cm Firmware | =4.0 | |
| Philips Efficia Cm |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-43550?
CVE-2021-43550 refers to the use of a broken or risky cryptographic algorithm that poses a risk to the security of communication between Patient Information Center iX (PIC iX) Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to C.0x and 4.0.
What are the affected software versions?
The affected software versions include Patient Information Center iX Versions C.02 and C.03, and Efficia CM Series Revisions A.01 to C.0x and 4.0.
Why is CVE-2021-43550 considered a vulnerability?
CVE-2021-43550 is considered a vulnerability because it involves the use of a broken or risky cryptographic algorithm that can lead to the exposure of sensitive information.
What is the severity of CVE-2021-43550?
The severity of CVE-2021-43550 is rated as medium with a severity value of 6.5.
How can I mitigate the risk of CVE-2021-43550?
To mitigate the risk of CVE-2021-43550, it is recommended to update the affected software versions to the latest patches or versions provided by Philips.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/philips
- canonical/philips patient information center ix
- version/philips patient information center ix/c.02
- version/philips patient information center ix/c.03
- canonical/philips efficia cm firmware
- version/philips efficia cm firmware/a.01
- version/philips efficia cm firmware/c.0x
- version/philips efficia cm firmware/4.0
- canonical/philips efficia cm