Vulnerability: Inconsistent Length Field Handling in PICiX Versions C.02, C.03

Vulnerability: Inconsistent Length Field Handling in PICiX Versions C.02, C.03

CVE-2020-16224 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

In Patient Information Center iX (PICiX) Versions C.02, C.03, the software parses a formatted message or structure but does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data, causing the application on the surveillance station to restart.

Learn more about our Web Application Penetration Testing UK.