Clear Text Storage of Login Credentials in Philips DoseWise Portal

Clear Text Storage of Login Credentials in Philips DoseWise Portal

CVE-2017-9654 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The Philips DoseWise Portal web-based application versions 1.1.7.333 and 2.1.1.3069 stores login credentials in clear text within backend system files. CVSS v3 base score: 6.5, CVSS vector string: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Learn more about our Web App Pen Testing.