Known Vulnerabilities for products from Philips
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Philips".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Philips can be found at device.report : Philips
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-5441 json | Not Provided | 2026-04-09 | 2026-04-14 | |
| CVE-2026-3562 json | Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability. This vulnerability allows netwo... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2026-3561 json | Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability ... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2026-3560 json | Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulne... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2026-3559 json | Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability. This vulnerability allows net... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2026-3558 json | Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass Vulnerability. This vulnerability ... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2026-3557 json | Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Th... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2026-3556 json | Philips Hue Bridge HomeKit Pair-Setup Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allo... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2026-3555 json | Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability. This v... | Not Provided | 2026-03-16 | 2026-04-27 |
| CVE-2022-0922 json | The software does not perform any authentication for critical system functionality. | 6.5 - MEDIUM | 2022-04-01 | 2022-04-12 |
| CVE-2021-43552 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.5 - MEDIUM | 2021-12-27 | 2022-01-12 |
| CVE-2021-43550 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2021-12-27 | 2022-01-12 |
| CVE-2021-43548 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2021-12-27 | 2022-01-12 |
| CVE-2021-42744 json | Philips MRI 1.5T and MRI 3T Version 5.3 through 5.8.1 does not restrict or incorrectly restricts access to a resource from an... | Not Provided | 2021-11-19 | 2026-04-02 |
| CVE-2021-39376 json | Philips Healthcare Tasy Electronic Medical Record (EMR) 3.06 allows SQL injection via the CorCad_F2/executaConsultaEspecifico... | 8.8 - HIGH | 2021-08-24 | 2021-08-31 |
| CVE-2021-39375 json | Philips Healthcare Tasy Electronic Medical Record (EMR) 3.06 allows SQL injection via the WAdvancedFilter/getDimensionItemsBy... | 8.8 - HIGH | 2021-08-24 | 2021-09-14 |
| CVE-2021-39369 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-12-26 | 2023-01-05 |
| CVE-2021-33024 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-01 | 2022-04-08 |
| CVE-2021-33022 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-01 | 2022-04-08 |
| CVE-2021-33020 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-01 | 2023-07-07 |
Known software with vulnerabilities from Philips
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Philips | 865240 | b |
| Hardware | Philips | 865241 | b |
| Hardware | Philips | 865242 | b |
| Hardware | Philips | Affiniti 50 | - |
| Operating System | Philips | Affiniti 50 Firmware | - |
| Hardware | Philips | Affiniti 70 | - |
| Operating System | Philips | Affiniti 70 Firmware | - |
| Hardware | Philips | Clearvue 350 | - |
| Operating System | Philips | Clearvue 350 Firmware | - |
| Hardware | Philips | Clearvue 850 | - |
| Operating System | Philips | Clearvue 850 Firmware | - |
| Application | Philips | Clinical Collaboration Platform | 12.2.1 |
| Hardware | Philips | Cx50 | - |
| Operating System | Philips | Cx50 Firmware | 5.0.2 |
| Application | Philips | Dosewise | 1.1.7.333 |
| Application | Philips | Dreammapper | - |
| Hardware | Philips | Dtr3502bfta Dvb-t2 | - |
| Operating System | Philips | Dtr3502bfta Dvb-t2 Firmware | 2.2.1 |
| Hardware | Philips | E-alert | - |
| Operating System | Philips | E-alert Firmware | - |