MEDIUM
Philips
CVE published 2024-07-18
CVE-2023-40704
Philips Vue PACS versions prior to 12.2.8.410 do not enforce unique and complex password creation during installation, allowing continued use of default credentials. An attacker with adjacent network access and high privileges who obtains or guesses the default password could gain database access, with potential impacts to system availability and data integrity. The vulnerability was published on July 18, [truncated]