exploitDog

GHSA-w3jp-95q8-wv48

Опубликовано: 07 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive information.

Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive information.

Ссылки

EPSS

Процентиль: 57%

0.00353

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-331

Связанные уязвимости

CVE-2024-53522

CVSS3: 7.5

nvd

около 1 года назад

Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive information.

EPSS

Процентиль: 57%

0.00353

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-331