CVE-2021-33017
Summary
| CVE | CVE-2021-33017 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-12-27 19:15:00 UTC |
| Updated | 2022-01-10 15:20:00 UTC |
| Description | The standard access path of the IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) requires authentication, but the product has an alternate path or channel that does not require authentication. |
Risk And Classification
Problem Types: CWE-288
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Philips | Intellibridge Ec40 | - | All | All | All |
| Operating System | Philips | Intellibridge Ec40 Firmware | All | All | All | All |
| Hardware | Philips | Intellibridge Ec80 | - | All | All | All |
| Operating System | Philips | Intellibridge Ec80 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Philips IntelliBridge EC 40 and EC 80 Hub | CISA | MISC | www.cisa.gov | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
LEGACY: Younes Dragoni, Andrea Palanca and Ivan Speziale of Nozomi Networks
There are currently no legacy QID mappings associated with this CVE.