Описание
Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password.
Уязвимые конфигурации
Конфигурация 1Версия до 5.8 (включая)
cpe:2.3:a:hospira:mednet:*:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.0041
Низкий
9 Critical
CVSS2
9 Critical
CVSS2
Дефекты
CWE-259
CWE-200
Связанные уязвимости
github
больше 3 лет назад
Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password.
EPSS
Процентиль: 61%
0.0041
Низкий
9 Critical
CVSS2
9 Critical
CVSS2
Дефекты
CWE-259
CWE-200