Primary

Context

Philips Vue PACS Cryptographic Key Expiration Vulnerability

Vulnerability

Patched

A vulnerability exists in Philips Vue PACS, Vue MyVue, Vue Speech, and Vue Motion versions through 12.2.x.x, allowing the use of cryptographic keys or passwords past their expiration date. This flaw increases the risk of cracking attacks by extending the time window during which keys can be compromised.

Impact

Exploitation of this vulnerability could allow unauthorized individuals to crack cryptographic keys, potentially leading to unauthorized access or manipulation of data.

Remediation

Philips has released version 12.2.8.100 in Q1 2022 for PACS that addresses this vulnerability. Users should contact Philips support for assistance with the update.

Added: May 15, 2026, 8:43 AM

Updated: May 15, 2026, 8:43 AM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

6.6

remediation

8.3

relevance

0.0

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

6.6

remediation

8.3

relevance

0.0

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Philips Vue PACS Cryptographic Key Expiration Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Philips Vue PACS

Philips Vue MyVue

Philips Vue Speech

Philips Vue Motion

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating