exploitDog

GHSA-9wgg-qjjm-45vr

Опубликовано: 12 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Navigating to a specific URL with a patient ID number will result in the server generating a PDF of a lab report without authentication and rate limiting.

Navigating to a specific URL with a patient ID number will result in the server generating a PDF of a lab report without authentication and rate limiting.

Ссылки

EPSS

Процентиль: 36%

0.00149

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-287

CWE-288

Связанные уязвимости

CVE-2022-1067

CVSS3: 6.5

nvd

почти 4 года назад

Navigating to a specific URL with a patient ID number will result in the server generating a PDF of a lab report without authentication and rate limiting.

EPSS

Процентиль: 36%

0.00149

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-287

CWE-288