Philips Clinical Collaboration Platform, Versions 12.2.1 and prior, does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output used as a webpage that is. Rated low severity (CVSS 3.5), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Clinical Collaboration Platform
NVD
CVSS 3.1
3.5
EPSS
0.5%
All version of Ewon Flexy and Cosy prior to 14.1 use wildcards such as (*) under which domains can request resources. Rated low severity (CVSS 2.3), this vulnerability is low attack complexity. No vendor patch available.
Code Injection
Ewon Flexy Firmware
Ewon Cosy Firmware
NVD
CVSS 3.1
2.3
EPSS
0.3%