Описание
Open Dental before version 18.4 installs a mysql database and uses the default credentials of "root" with a blank password. This allows anyone on the network with access to the server to access all database information.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 18.4 (исключая)
cpe:2.3:a:opendental:opendental:*:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00305
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-255
CWE-521
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Open Dental before version 18.4 installs a mysql database and uses the default credentials of "root" with a blank password. This allows anyone on the network with access to the server to access all database information.
EPSS
Процентиль: 53%
0.00305
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-255
CWE-521