CVE-2021-43552— Philips Patient Information Center iX (PIC iX) and Efficia CM Series Use of Hard-coded Cryptographic Key
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-43552
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Philips Patient Information Center iX (PIC iX) and Efficia CM Series Use of Hard-coded Cryptographic Key
Source: NVD (National Vulnerability Database)
Vulnerability Description
The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX (PIC iX) Versions B.02, C.02, and C.03.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用硬编码的密码学密钥
Source: NVD (National Vulnerability Database)
Vulnerability Title
Philips Patient Information Center iX 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Philips Patient Information Center iX是欧洲飞利浦(Philips)公司的飞利浦患者信息中心 (PIC iX) 是我们患者监测系统的核心,它有助于了解患者状况,帮助护理人员及早识别潜在的恶化,同时增强临床工作流程。 Philips Patient Information Center iX (PIC iX) and Efficia CM Series存在安全漏洞,该漏洞源于成功利用这些漏洞可能允许攻击者未经授权访问数据(包括患者数据)并创建拒绝服务,导致在中心站查看生理
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Philips | Patient Information Center iX (PIC iX) | C.02 | - |
II. Public POCs for CVE-2021-43552
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-43552
请登录查看更多情报信息。
- https://www.cisa.gov/uscert/ics/advisories/icsma-21-322-02x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2021-43552
Same Patch Batch · Philips · 2021-12-27 · 5 CVEs total
| CVE-2021-32993 | 8.1 HIGH | Philips IntelliBridge EC 40 and EC 80 Hub Use of Hard-coded Credentials |
| CVE-2021-33017 | 8.1 HIGH | Philips IntelliBridge EC 40 and EC 80 Hub Authentication Bypass Using an Alternate Path or |
| CVE-2021-43548 | 6.5 MEDIUM | Philips Patient Information Center iX (PIC iX) and Efficia CM Series Improper Input Valida |
| CVE-2021-43550 | 5.9 MEDIUM | Philips Patient Information Center iX (PIC iX) and Efficia CM Series Use of a Broken or Ri |
IV. Related Vulnerabilities
Same vendor: Philips
- CVE-2026-3562
Philips Hue Bridge hk_hap Ed25519 Signature Verification Aut - CVE-2026-3561
Philips Hue Bridge hk_hap characteristics Heap-based Buffer - CVE-2026-3560
Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-base - CVE-2026-3559
Philips Hue Bridge HomeKit Accessory Protocol Static Nonce A - CVE-2026-3558
Philips Hue Bridge HomeKit Accessory Protocol Transient Pair
Same weakness: CWE-321
- CVE-2026-8243
Industrial Application Software IAS Canias ERP JNLP Deployme - CVE-2026-6787
Usage of a hard-coded cryptographic key in WatchGuard Agent - CVE-2026-42518
Information Disclosure Vulnerability in e-Sushrut HMIS - CVE-2026-7306
Xuxueli xxl-job OpenAPI Endpoint OpenApiController.java hard - CVE-2026-32644
Milesight Cameras Use of Hard-coded Cryptographic Key
V. Comments for CVE-2021-43552
No comments yet