CVE-2021-36124

2021-07-1313:57:33

mitre

www.cve.org

9.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.2%

JSON

An issue was discovered in Echo ShareCare 8.15.5. It does not perform authentication or authorization checks when accessing a subset of sensitive resources, leading to the ability for unauthenticated users to access pages that are vulnerable to attacks such as SQL injection.

References

github.com/atredispartners/advisories/blob/master/ATREDIS-2021-0001.md