Insufficient Access Controls Cause Philips MRI Vulnerabilities

Health IT Security

Jill McKeon

Three newly identified low-to-medium severity Philips MRI vulnerabilities may allow unauthorized actors to manipulate software, modify system configurations, and export protected health information (PHI) if exploited, according to an email from Philips sent to HealthItSecurity.

The vulnerabilities impact the Philips MRI 1.5T: Version 5.x.x. and MRI 3T: Version 5.x.x. The Cybersecurity & Infrastructure Security Agency (CISA) subsequently released an advisory about the vulnerabilities, which were reported to Philips by Michael Aguilar, a Secureworks Adversary Group consultant.

There have been no reported incidents from...

Get the Morning Update

Thanks for subscribing!