CVE-2021-27456

Philips Gemini PET/CT family software stores sensitive information in a removable media device that does not have built-in access control.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsma-21-084-01 Third Party Advisory US Government Resource
https://www.philips.com/productsecurity Product
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:phillips:gemini_882300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882300:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:phillips:gemini_882160_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882160:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:phillips:gemini_882400_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882400:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:phillips:gemini_882390_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882390:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:phillips:gemini_882410_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882410:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:phillips:gemini_882412_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882412:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:phillips:gemini_882473_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882473:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:phillips:gemini_882470_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882470:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:phillips:gemini_882471_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882471:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:phillips:gemini_882476_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:gemini_882476:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:phillips:truflight_882438_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:phillips:truflight_882438:-:*:*:*:*:*:*:*

Information

Published : 2022-03-23 13:15

Updated : 2022-04-12 11:09


NVD link : CVE-2021-27456

Mitre link : CVE-2021-27456


JSON object : View

CWE
CWE-922

Insecure Storage of Sensitive Information

Advertisement

dedicated server usa

Products Affected

phillips

  • gemini_882160_firmware
  • gemini_882412
  • gemini_882470_firmware
  • gemini_882473
  • gemini_882470
  • gemini_882471
  • gemini_882476_firmware
  • gemini_882300
  • gemini_882473_firmware
  • truflight_882438_firmware
  • gemini_882400_firmware
  • gemini_882476
  • gemini_882160
  • gemini_882390
  • gemini_882400
  • gemini_882390_firmware
  • truflight_882438
  • gemini_882410_firmware
  • gemini_882471_firmware
  • gemini_882410
  • gemini_882300_firmware
  • gemini_882412_firmware