CVE-2020-16222— Philips Patient Monitoring Devices Improper Authentication
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-16222
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Philips Patient Monitoring Devices Improper Authentication
Source: NVD (National Vulnerability Database)
Vulnerability Description
In Patient Information Center iX (PICiX) Version B.02, C.02, C.03, and PerformanceBridge Focal Point Version A.01, when an actor claims to have a given identity, the software does not prove or insufficiently proves the claim is correct.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
认证机制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Philips Patient Information Center iX 授权问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Philips Patient Information Center iX是欧洲飞利浦(Philips)公司的飞利浦患者信息中心 (PIC iX) 是我们患者监测系统的核心,它有助于了解患者状况,帮助护理人员及早识别潜在的恶化,同时增强临床工作流程。 Philips Patient Information Center iX 存在授权问题漏洞。该漏洞源于在电子表格软件打开文件时可能解释为命令的特殊元素。以下是受影响的产品及版本:B.02, C.02, C.03。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Philips | Patient Information Center iX (PICiX) | B.02 | - | |
| Philips | PerformanceBridge Focal Point | A.01 | - |
II. Public POCs for CVE-2020-16222
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-16222
请登录查看更多情报信息。
- https://us-cert.cisa.gov/ics/advisories/icsma-20-254-01x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2020-16222
Same Patch Batch · Philips · 2020-09-11 · 8 CVEs total
| CVE-2020-16212 | Philips Patient Monitoring Devices Exposure of Resource to Wrong Sphere | |
| CVE-2020-16214 | Philips Patient Monitoring Devices Improper Neutralization of Formula Elements in a CSV Fi | |
| CVE-2020-16216 | Philips Patient Monitoring Devices Improper Input Validation | |
| CVE-2020-16218 | Philips Patient Monitoring Devices Cross-site Scripting | |
| CVE-2020-16220 | Philips Patient Monitoring Devices Improper Validation of Syntactic Correctness of Input | |
| CVE-2020-16224 | Philips Patient Monitoring Devices Improper Handling of Length Parameter Inconsistency | |
| CVE-2020-16228 | Philips Patient Monitoring Devices Improper Check for Certificate Revocation |
IV. Related Vulnerabilities
Same product: Patient Information Center iX (PICiX)
- CVE-2020-16212
Philips Patient Monitoring Devices Exposure of Resource to W - CVE-2020-16220
Philips Patient Monitoring Devices Improper Validation of Sy - CVE-2020-16224
Philips Patient Monitoring Devices Improper Handling of Leng - CVE-2020-16228
Philips Patient Monitoring Devices Improper Check for Certif - CVE-2020-16214
Philips Patient Monitoring Devices Improper Neutralization o
Same vendor: Philips
- CVE-2026-3562
Philips Hue Bridge hk_hap Ed25519 Signature Verification Aut - CVE-2026-3561
Philips Hue Bridge hk_hap characteristics Heap-based Buffer - CVE-2026-3560
Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-base - CVE-2026-3559
Philips Hue Bridge HomeKit Accessory Protocol Static Nonce A - CVE-2026-3558
Philips Hue Bridge HomeKit Accessory Protocol Transient Pair
Same weakness: CWE-287
- CVE-2026-8244
Industrial Application Software IAS Canias ERP Login RMI imp - CVE-2026-8216
Industrial Application Software IAS Canias ERP Java RMI Sess - CVE-2026-8214
Industrial Application Software IAS Canias ERP RMI doAction - CVE-2026-42560
auth: Patreon provider assigns the same local user ID to eve - CVE-2026-41070
openvpn-auth-oauth2 returns FUNC_SUCCESS on client-deny, all
V. Comments for CVE-2020-16222
No comments yet