Описание
SAP EMR Unwired (com.sap.mobile.healthcare.emr.v2) and Clinical Task Tracker (com.sap.mobile.healthcare.ctt) does not properly restrict access, which allows remote attackers to change the backendurl, clientid, ssourl, and infopageurl settings via unspecified vectors, aka SAP Security Note 2117079.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sap:clinical_task_tracker:*:*:*:*:*:iphone_os:*:*
cpe:2.3:a:sap:emr_unwired:*:*:*:*:*:iphone_os:*:*
EPSS
Процентиль: 64%
0.0046
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
SAP EMR Unwired (com.sap.mobile.healthcare.emr.v2) and Clinical Task Tracker (com.sap.mobile.healthcare.ctt) does not properly restrict access, which allows remote attackers to change the backendurl, clientid, ssourl, and infopageurl settings via unspecified vectors, aka SAP Security Note 2117079.
EPSS
Процентиль: 64%
0.0046
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264