Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C) and WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C). An attacker can use these credentials to login via ftp and upload a malicious firmware.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsma-19-255-01 | Mitigation Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Information
Published : 2019-09-12 13:15
Updated : 2019-10-09 16:46
NVD link : CVE-2019-13530
Mitre link : CVE-2019-13530
JSON object : View
CWE
CWE-798
Use of Hard-coded Credentials
Products Affected
philips
- m8102a
- intellivue_mp_monitors_mp20-mp90_firmware
- m8003a
- m8105a
- 865240
- m8105as
- intellivue_mp_monitors_mp2\/x2_firmware
- 865242
- m8004a
- 865241
- m8002a
- intellivue_mp_monitors_mx800\/700\/600_firmware
- intellivue_mp_monitors_mp5\/5sc_firmware
- m3002a
- m8005a
- m8008a
- m8001a
- m80010a
- m8007a