Описание
A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream PACS Premium 7.3.3.840. A specially crafted .php file can lead to elevated capabilities. An attacker can upload a malicious file to trigger this vulnerability.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:meddream:pacs_server:7.3.2.840:*:*:*:premium:*:*:*
EPSS
Процентиль: 18%
0.00058
Низкий
9.3 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-284
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 9.3
github
6 месяцев назад
A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream PACS Premium 7.3.3.840. A specially crafted .php file can lead to elevated capabilities. An attacker can upload a malicious file to trigger this vulnerability.
EPSS
Процентиль: 18%
0.00058
Низкий
9.3 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-284
NVD-CWE-noinfo