Risk Summary
Successful exploitation of these vulnerabilities could allow an attacker access to administrative controls and system configurations, which could allow changes to system configuration items causing patient data to be sent to a remote destination.
CVEs (1)
Remediations
- As a mitigation to these vulnerabilities, Philips recommends users change all system passwords on the SureSigns VS4 with unique passwords for each device and secure the device when not in use to prevent unauthorized access, as referenced in the Installation and Configuration Guide available on Incenter. Philips also recommends users consider replacing the SureSigns VS4 device with a newer technology. Users with questions regarding specific SureSigns VS4 patient monitor installations and upgrade options should contact Philips service support or regional service support or call 1-800-722-9377. Please see the Philips advisory for vulnerabilities discussed in this disclosure, and visit the Philips product security website for the latest security information for Philips products.
Affected Vendors
Philips
Affected Products (1)
Philips
·
SureSigns
<= S4 A.07.107
Affected Sectors
Healthcare and Public Health
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more