CVE-2020-14506
LOWPhilips Clinical Collaboration Platform < 12.2.1 - Cross-Site Request Forgery
Title source: llmDescription
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.
References (2)
Core 2
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://us-cert.cisa.gov/ics/advisories/icsma-20-261-01
Scores
CVSS v3
3.4
EPSS
0.0027
EPSS Percentile
18.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
Details
CWE
CWE-352
Status
published
Products (1)
philips/clinical_collaboration_platform
< 12.2.1
Published
Sep 18, 2020
Tracked Since
Feb 18, 2026