What is CVE-2020-14506?

CVE-2020-14506 is a low-severity vulnerability in Philips Clinical Collaboration Platform, classified under Cross-Site Request Forgery (CSRF). CVSS score: 3.4/10. Published 2020-09-18.

How severe is CVE-2020-14506?

Low severity. CVSS v3 base score is 3.4 out of 10.

CSRF in Philips Clinical Collaboration Platform

CVE-2020-14506

Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.000 (10.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.4 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N.

Affected products

Philips Clinical Collaboration Platform — versions 0

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

References

Frequently asked questions

What is CVE-2020-14506?: CVE-2020-14506 is a low-severity vulnerability in Philips Clinical Collaboration Platform, classified under Cross-Site Request Forgery (CSRF). CVSS score: 3.4/10. Published 2020-09-18.
How severe is CVE-2020-14506?: Low severity. CVSS v3 base score is 3.4 out of 10.