Windows Pragmatic General Multicast (PGM) Vulnerability (CVE-2023-24943)
Canon Medical Systems Security Advisory
Overview:
It was announced that there is security vulnerability that affects Windows Pragmatic General Multicast (PGM). PGM is a reliable multicast computer network transport protocol. A remote code execution vulnerability exists when Windows message queuing service is running in a PGM Server environment.
REF: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24943
Vulnerability Overview:
The Windows message queuing service, which is a Windows component, needs to be enabled for a system to be exploitable by this vulnerability. When Windows message queuing service is running in a PGM Server environment, an attacker could send a specially crafted file over the network to achieve remote code execution and attempt to trigger malicious code.
Possible Affected Canon Medical Systems Products:
Canon Medical Imaging Products are not affected because they are not PGM Server environment.
Resolution:
None
Due to medical device regulatory reasons, not all products/service displayed on this Canon Medical Systems Asia webpage are available in all countries, regions or markets. Future availability of the products/service cannot also be guaranteed. Please contact your local Canon Medical Systems representative for further details.
