1. Home
  2. CVE Database
  3. CVE-2021-27456
LOW · 2.4

CVE-2021-27456

Philips Gemini PET/CT family software stores sensitive information in a removable media device that does not have built-in access control.

Vulnerability Description

Philips Gemini PET/CT family software stores sensitive information in a removable media device that does not have built-in access control.

CVSS Score

2.4

LOW

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
PhillipsGemini 882300 Firmware-
PhillipsGemini 882300-
PhillipsGemini 882160 Firmware-
PhillipsGemini 882160-
PhillipsGemini 882400 Firmware-
PhillipsGemini 882400-
PhillipsGemini 882390 Firmware-
PhillipsGemini 882390-
PhillipsGemini 882410 Firmware-
PhillipsGemini 882410-
PhillipsGemini 882412 Firmware-
PhillipsGemini 882412-
PhillipsGemini 882473 Firmware-
PhillipsGemini 882473-
PhillipsGemini 882470 Firmware-
PhillipsGemini 882470-
PhillipsGemini 882471 Firmware-
PhillipsGemini 882471-
PhillipsGemini 882476 Firmware-
PhillipsGemini 882476-

Related Weaknesses (CWE)

CWE-921CWE-922

References

FAQ

What is CVE-2021-27456?

CVE-2021-27456 is a vulnerability with a CVSS score of 2.4 (LOW). Philips Gemini PET/CT family software stores sensitive information in a removable media device that does not have built-in access control.

How severe is CVE-2021-27456?

CVE-2021-27456 has been rated LOW with a CVSS base score of 2.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-27456?

Check the references section above for vendor advisories and patch information. Affected products include: Phillips Gemini 882300 Firmware, Phillips Gemini 882300, Phillips Gemini 882160 Firmware, Phillips Gemini 882160, Phillips Gemini 882400 Firmware.