Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-11694
HistoryJul 28, 2017 - 1:00 p.m.

CVE-2017-11694

2017-07-2813:00:00
mitre
www.cve.org
1

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.6%

JSON

MEDHOST Document Management System contains hard-coded credentials that are used for Apache Solr access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with Apache Solr may be able to obtain or modify sensitive patient and financial information. The Apache Solr account name is dms. The password is hard-coded throughout the application, and is the same across all installations. Customers do not have the option to change passwords. The dms account for Apache Solr has access to all indexed patient documents.

Related

nvd 1
cve 1
prion 1
packetstorm 2
nvd
nvd
CVE-2017-11694
2017-07-28 13:29:00
cve
cve
CVE-2017-11694
2017-07-28 13:29:00
prion
prion
Hardcoded credentials
2017-07-28 13:29:00
packetstorm
packetstorm
MEDHOST Document Management System Hardcoded Credentials
2017-07-27 00:00:00
MEDHOST Connex Hardcoded Password
2017-07-31 00:00:00

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.6%

JSON
Related for CVELIST:CVE-2017-11694
nvd1cve1prion1packetstorm2