CVE-2019-13534

Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C) and WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C). The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code.
References
Link Resource
https://www.us-cert.gov/ics/advisories/icsma-19-255-01 Mitigation Third Party Advisory US Government Resource
https://www.us-cert.gov/ics/advisories/icsma-19-255-01 Mitigation Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:philips:intellivue_mp_monitors_mp20-mp90_firmware:a.03.09:*:*:*:*:*:*:*
OR cpe:2.3:h:philips:m80010a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8001a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8002a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8003a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8004a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8005a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8007a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8008a:a:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:philips:intellivue_mp_monitors_mp5\/5sc_firmware:a.03.09:*:*:*:*:*:*:*
OR cpe:2.3:h:philips:m8105a:a:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8105as:a:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:philips:intellivue_mp_monitors_mp2\/x2_firmware:a01.09:*:*:*:*:*:*:*
OR cpe:2.3:h:philips:m3002a:b:*:*:*:*:*:*:*
cpe:2.3:h:philips:m8102a:b:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:philips:intellivue_mp_monitors_mx800\/700\/600_firmware:a.01.09:*:*:*:*:*:*:*
OR cpe:2.3:h:philips:865240:b:*:*:*:*:*:*:*
cpe:2.3:h:philips:865241:b:*:*:*:*:*:*:*
cpe:2.3:h:philips:865242:b:*:*:*:*:*:*:*

History

21 Nov 2024, 04:25

Type Values Removed Values Added
References () https://www.us-cert.gov/ics/advisories/icsma-19-255-01 - Mitigation, Third Party Advisory, US Government Resource () https://www.us-cert.gov/ics/advisories/icsma-19-255-01 - Mitigation, Third Party Advisory, US Government Resource

Information

Published : 2019-09-12 20:15

Updated : 2024-11-21 04:25


NVD link : CVE-2019-13534

Mitre link : CVE-2019-13534

CVE.ORG link : CVE-2019-13534


JSON object : View

Products Affected

philips

  • intellivue_mp_monitors_mx800\/700\/600_firmware
  • m8007a
  • 865242
  • m8005a
  • 865241
  • m8105as
  • intellivue_mp_monitors_mp5\/5sc_firmware
  • m3002a
  • m8102a
  • m8004a
  • intellivue_mp_monitors_mp20-mp90_firmware
  • intellivue_mp_monitors_mp2\/x2_firmware
  • m8008a
  • m8001a
  • m8105a
  • 865240
  • m8003a
  • m80010a
  • m8002a
CWE
CWE-494

Download of Code Without Integrity Check