The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of critical vulnerabilities affecting Philips Tasy electronic medical records (EMR) system. The vulnerabilities could be exploited by remote threat actors to extract sensitive personal data from patient databases. The flaws affect Tasy EMR HTML5 3.06.1803 and prior, and could essentially allow an attacker to modify database commands, resulting in unauthorized access, exposure of sensitive information, and even the execution of arbitrary system commands.”]
Source: https://thehackernews.com/2021/11/critical-flaws-in-philips-tasy-emr.html