CVEs-PoC/2020/CVE-2020-16228.md

### [CVE-2020-16228](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16228)
![](https://img.shields.io/static/v1?label=Product&message=IntelliVue%20X3&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=IntelliVue%20patient%20monitors&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Patient%20Information%20Center%20iX%20(PICiX)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=PerformanceBridge%20Focal%20Point&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20A.01%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20C.02%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20MX100%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=0%3C%3D%20N%20%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-299%20Improper%20Check%20for%20Certificate%20Revocation&color=brighgreen)

### Description

In Patient Information Center iX (PICiX) Versions C.02 and C.03, PerformanceBridge Focal Point Version A.01, IntelliVue patient monitors MX100, MX400-MX550, MX750, MX850, and IntelliVue X3 Versions N and prior, the software does not check or incorrectly checks the revocation status of a certificate, which may cause it to use a compromised certificate.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/404notf0und/CVE-Flow