Main Vulnerability Database SB2020092104

SB2020092104 - Algorithm Downgrade in Philips Clinical Collaboration Platform

Published: September 21, 2020

Security Bulletin ID SB2020092104

Severity

Low

Patch available

Number of vulnerabilities 1

Exploitation vector Adjecent network

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Algorithm Downgrade (CVE-ID: CVE-2020-16200)

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to the affected software does not properly control the allocation and maintenance of a limited resource. A remote attacker on the local network can influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

https://us-cert.cisa.gov/ics/advisories/icsma-20-261-01