Vulnerability: Unauthorized Firmware Upload via FTP in Philips IntelliVue WLAN Patient Monitors

Vulnerability: Unauthorized Firmware Upload via FTP in Philips IntelliVue WLAN Patient Monitors

CVE-2019-13530 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C) and WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C). An attacker can use these credentials to login via ftp and upload a malicious firmware.

Learn more about our Web Application Penetration Testing UK.