ICSMA-21-175-01
·
Published 2021-06-24
·
View on CISA ICS-CERT ↗
Philips Interoperability Solution XDS
CVSS 3.7
LOW
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to read the LDAP system credentials by gaining access to the network channel used for communication. This risk applies to configurations using LDAP via TLS and where the domain controller returns LDAP referrals.
CVEs (1)
Remediations
- Philips has identified the following guidance and mitigations:
- Users with questions regarding their specific installations of the Interoperability Solutions XDS components should contact Philips regional service support online or by phone at 1-800-722-9377.
- See the Philips advisory for additional details regarding this vulnerability. In addition, users can visit the Philips product security website for the latest security information for Philips products.
Affected Vendors
Philips
Affected Products (2)
Philips
·
Interoperability Solution XDS
>= 2.5 | <= 3.11
Philips
·
Interoperability Solution XDS
>= 2018-1 | <= 2021-1
Affected Sectors
Healthcare and Public Health
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more