On Wednesday, November 10, 2021, three vulnerabilities of medium severity have been identified in Philips MRI products. This impacts the 1.5T/3T products with 5.x.x software versions. These devices are widely used in healthcare environments, and the impact radius is large. If exploited, these vulnerabilities allow an unauthorized user to:
- Run the software
- Modify device configuration
- Export data
- Access PHI
- Other exfiltration
The release document is found here.
Affected devices: Philips MRI 1.5T/3T products with 5.x.x software versions
Remediation steps:
Philips plans to release a software upgrade to remediate these vulnerabilities by October 2022, until then, they recommend operating the Philips MRI machines within authorized specifications, ensuring physical and logical controls are implemented.
Status:
Already on the Threat Intel Feed. The vulnerability is on the dashboard.
Can Medigate users detect this vulnerability?
Yes, we are detecting Philips MRI products in these versions.
Medigate Recommends:
- Identify all impacted devices in your environment
- Ensure physical & logical controls are implemented (micro-segmentation)
- Observe traffic for anomalies until patch is available
- Install patch from Phillips once it is released (Oct 2022)
Examples for potentially affected devices
- Ingenia
- Achieva
- Ingenia Elition X
- Ingenia Ambition X
- Ingenia
As always, reach out to your Medigate team for further information or assistance in executing the remediation steps.
