Lucene search
K

14 matches found

Vulnrichment
Vulnrichment
added 2025/12/02 9:11 p.m.5 views

CVE-2025-62575 Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource

NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user account 'nmdbuser' and other created accounts by default have the sysadmin role. This can lead to remote code execution through the use of certain built-in stored procedures...

8.7CVSS8AI score0.00367EPSS
Exploits0References1
CVE
CVE
added 2025/12/02 9:11 p.m.8 views

CVE-2025-62575

CVE-2025-62575 concerns NMIS/BioDose software (V22.02 and earlier) that relies on a Microsoft SQL Server database. The root cause is that the default SQL account nmdbuser (and other created accounts) has the sysadmin role, enabling potential remote code execution through certain built‑in stored p...

8.8CVSS8AI score0.00367EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/12/02 9:11 p.m.11 views

CVE-2025-62575 Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource

NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user account 'nmdbuser' and other created accounts by default have the sysadmin role. This can lead to remote code execution through the use of certain built-in stored procedures...

8.7CVSS0.00367EPSS
Exploits0References1
CVE
CVE
added 2025/12/02 9:9 p.m.10 views

CVE-2025-64778

CVE-2025-64778 concerns NMIS/BioDose software V22.02 and earlier, where executables ship with hard-coded plaintext passwords. The root cause is embedded credentials in binary files, enabling unauthorized access to both the application and the SQL Server database under affected deployments. Public...

8.4CVSS6.4AI score0.00102EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/12/02 9:9 p.m.8 views

CVE-2025-64778 Mirion Medical EC2 Software NMIS BioDose Use of Hard-coded Credentials

NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard-coded passwords. These hard-coded passwords could allow unauthorized access to both the application and database...

8.4CVSS0.00102EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/02 9:7 p.m.2 views

CVE-2025-61940 Mirion Medical EC2 Software NMIS BioDose Use of Client-Side Authentication

NMIS/BioDose V22.02 and previous versions rely on a common SQL Server user account to access data in the database. User access in the client application is restricted by a password authentication check in the client software but the underlying database connection always has access. The latest...

8.7CVSS7.3AI score0.00293EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/02 9:5 p.m.5 views

CVE-2025-64298 Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource

NMIS/BioDose V22.02 and previous version installations where the embedded Microsoft SQLServer Express is used are exposed in the Windows share accessed by clients in networked installs. By default, this directory has insecure directory paths that allow access to the SQL Server database and...

8.6CVSS6.9AI score0.00205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/02 9:3 p.m.1 views

CVE-2025-64642 Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource

NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries...

8CVSS6.5AI score0.00103EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/02 9:3 p.m.7 views

CVE-2025-64642 Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource

NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries...

8CVSS0.00103EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.4 views

Mirion Medical EC2 Software NMIS BioDose 安全漏洞

Mirion Medical EC2 Software NMIS BioDose is a software for managing and analyzing biological dosimetry data from Mirion Medical, Germany. A security vulnerability exists in Mirion Medical EC2 Software NMIS BioDose V22.02 and prior versions, which stems from an insecure Windows shared directory pa...

8.6CVSS6.3AI score0.00205EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.4 views

Mirion Medical EC2 Software NMIS BioDose 安全漏洞

Mirion Medical EC2 Software NMIS BioDose is a software for managing and analyzing biological dosimetry data from Mirion Medical, Germany. A security vulnerability exists in Mirion Medical EC2 Software NMIS BioDose V22.02 and prior versions that originates from accessing the database using a publi...

8.8CVSS6.9AI score0.00293EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.6 views

Mirion Medical EC2 Software NMIS BioDose 安全漏洞

Mirion Medical EC2 Software NMIS BioDose is a software for managing and analyzing biological dosimetry data from Mirion Medical, Germany. A security vulnerability exists in Mirion Medical EC2 Software NMIS BioDose V22.02 and prior versions, which stems from a SQL account having the sysadmin role ...

8.8CVSS8.1AI score0.00367EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.6 views

Mirion Medical EC2 Software NMIS BioDose 安全漏洞

Mirion Medical EC2 Software NMIS BioDose is a software for managing and analyzing biological dosimetry data from Mirion Medical, Germany. A security vulnerability exists in Mirion Medical EC2 Software NMIS BioDose V22.02 and earlier versions, which stems from insecure installation directory...

8CVSS6.5AI score0.00103EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.8 views

Mirion Medical EC2 Software NMIS BioDose 信任管理问题漏洞

Mirion Medical EC2 Software NMIS BioDose is a software for managing and analyzing biological dosimetry data from Mirion Medical, Germany. A trust management issue vulnerability exists in Mirion Medical EC2 Software NMIS BioDose V22.02 and prior versions, which stems from the inclusion of hard-cod...

8.4CVSS6.5AI score0.00102EPSS
Exploits0References1
Rows per page
Query Builder