CVE-2021-33018— Philips Vue PACS Use of a Broken or Risky Cryptographic Algorithm
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-33018
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Philips Vue PACS Use of a Broken or Risky Cryptographic Algorithm
Source: NVD (National Vulnerability Database)
Vulnerability Description
The use of a broken or risky cryptographic algorithm in Philips Vue PACS versions 12.2.x.x and prior is an unnecessary risk that may result in the exposure of sensitive information.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用已被攻破或存在风险的密码学算法
Source: NVD (National Vulnerability Database)
Vulnerability Title
Philips Vue PACS 加密问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Philips Vue PACS是欧洲飞利浦(Philips)公司的一种图像管理解决方案。 Philips Vue PACS 中存在加密问题漏洞。该漏洞允许未经授权的人员或进程窃听、查看或修改数据、获得系统访问权限、执行代码、安装未经授权的软件或影响系统数据完整性,从而对机密性、完整性、或系统的可用性。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Philips | Vue PACS | unspecified ~ 12.2.x.x | - | |
| Philips | Vue MyVue | unspecified ~ 12.2.x.x | - | |
| Philips | Vue Speech | unspecified ~ 12.2.x.x | - | |
| Philips | Vue Motion | unspecified ~ 12.2.1.5 | - |
II. Public POCs for CVE-2021-33018
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-33018
请登录查看更多情报信息。
- http://www.philips.com/productsecurityx_refsource_CONFIRM
- https://www.cisa.gov/uscert/ics/advisories/icsma-21-187-01x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2021-33018
Same Patch Batch · Philips · 2022-04-01 · 8 CVEs total
| CVE-2021-33020 | 8.2 HIGH | Philips Vue PACS Use of a Key Past its Expiration Date |
| CVE-2021-27501 | 7.5 HIGH | Philips Vue PACS Improper Adherence to Coding Standards |
| CVE-2021-33022 | 7.5 HIGH | Philips Vue PACS Cleartext Transmission of Sensitive Information |
| CVE-2021-27497 | 6.5 MEDIUM | Philips Vue PACS Protection Mechanism Failure |
| CVE-2022-0922 | 6.5 MEDIUM | ICSMA-22-088-01 Philips e-Alert |
| CVE-2021-27493 | 6.1 MEDIUM | Philips Vue PACS |
| CVE-2021-33024 | 3.7 LOW | Philips Vue PACS Insufficiently Protected Credentials |
IV. Related Vulnerabilities
Same product: Vue PACS
- CVE-2023-40704
Philips Vue PACS Use of Default Credentials - CVE-2021-33022
Philips Vue PACS Cleartext Transmission of Sensitive Informa - CVE-2021-27497
Philips Vue PACS Protection Mechanism Failure - CVE-2021-33024
Philips Vue PACS Insufficiently Protected Credentials - CVE-2021-33020
Philips Vue PACS Use of a Key Past its Expiration Date
Same vendor: Philips
- CVE-2026-3562
Philips Hue Bridge hk_hap Ed25519 Signature Verification Aut - CVE-2026-3561
Philips Hue Bridge hk_hap characteristics Heap-based Buffer - CVE-2026-3560
Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-base - CVE-2026-3559
Philips Hue Bridge HomeKit Accessory Protocol Static Nonce A - CVE-2026-3558
Philips Hue Bridge HomeKit Accessory Protocol Transient Pair
Same weakness: CWE-327
- CVE-2026-6411
MAXHUB Pivot Client Application Use of a Broken or Risky Cry - CVE-2026-44405
Paramiko 加密问题漏洞 - CVE-2026-32959
Silex SD-330AC和Silex AMC Manager 安全漏洞 - CVE-2026-5588
PKIX draft CompositeVerifier accepts empty signature sequenc - CVE-2025-14813
GOSTCTR implementation unable to process more than 255 block
V. Comments for CVE-2021-33018
No comments yet