Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:2 a.m.14 views

CVE-2022-37710

Patterson Dental Eaglesoft 21 has AES-256 encryption but there are two ways to obtain a keyfile: 1 keybackup.data License Encryption Key or 2 Eaglesoft.Server.Configuration.data DbEncryptKeyPrimary Encryption Key. Applicable files are encrypted with keys and salt that are hardcoded into a DLL or...

7.8CVSS6.8AI score0.00108EPSS
Exploits0
OSV
OSV
added 2022/11/07 12:15 a.m.5 views

CVE-2022-37710

Patterson Dental Eaglesoft 21 has AES-256 encryption but there are two ways to obtain a keyfile: 1 keybackup.data License Encryption Key or 2 Eaglesoft.Server.Configuration.data DbEncryptKeyPrimary Encryption Key. Applicable files are encrypted with keys and salt that are hardcoded into a DLL or...

7.8CVSS5.8AI score0.00108EPSS
Exploits0References1
NVD
NVD
added 2022/11/07 12:15 a.m.15 views

CVE-2022-37710

Patterson Dental Eaglesoft 21 has AES-256 encryption but there are two ways to obtain a keyfile: 1 keybackup.data License Encryption Key or 2 Eaglesoft.Server.Configuration.data DbEncryptKeyPrimary Encryption Key. Applicable files are encrypted with keys and salt that are hardcoded into a DLL or...

7.8CVSS0.00108EPSS
Exploits0References1
Prion
Prion
added 2022/11/07 12:15 a.m.19 views

Hardcoded credentials

Patterson Dental Eaglesoft 21 has AES-256 encryption but there are two ways to obtain a keyfile: 1 keybackup.data License Encryption Key or 2 Eaglesoft.Server.Configuration.data DbEncryptKeyPrimary Encryption Key. Applicable files are encrypted with keys and salt that are hardcoded into a DLL or...

4.3CVSS7.5AI score0.00108EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/11/06 12:0 a.m.68 views

CVE-2022-37710

Patterson Dental Eaglesoft 21 uses AES-256, but the keyfile and salt are hardcoded into a DLL/EXE. Two access paths to the keyfile exist: keybackup.data > License > Encryption Key and Eaglesoft.Server.Configuration.data > DbEncryptKeyPrimary > Encryption Key, enabling local attackers ...

7.8CVSS7.4AI score0.00108EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/11/06 12:0 a.m.13 views

CVE-2022-37710

Patterson Dental Eaglesoft 21 has AES-256 encryption but there are two ways to obtain a keyfile: 1 keybackup.data License Encryption Key or 2 Eaglesoft.Server.Configuration.data DbEncryptKeyPrimary Encryption Key. Applicable files are encrypted with keys and salt that are hardcoded into a DLL or...

7.7AI score0.00108EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/11/06 12:0 a.m.3 views

PT-2022-24046 · Patterson Dental · Patterson Dental Eaglesoft

Name of the Vulnerable Software and Affected Versions: Patterson Dental Eaglesoft version 21 Description: The issue concerns the encryption mechanism in Patterson Dental Eaglesoft. Although it uses AES-256 encryption, there are two methods to obtain the keyfile, which are through keybackup.data...

7.8CVSS7.4AI score0.00108EPSS
Exploits0References4
NVD
NVD
added 2016/04/01 11:59 p.m.14 views

CVE-2016-2343

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

10CVSS9.5AI score0.02431EPSS
Exploits0References2
OSV
OSV
added 2016/04/01 11:59 p.m.4 views

CVE-2016-2343

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

9.8CVSS5.9AI score0.02431EPSS
Exploits0References2
Prion
Prion
added 2016/04/01 11:59 p.m.13 views

Hardcoded credentials

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

10CVSS7.6AI score0.02431EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2016/04/01 11:0 p.m.39 views

CVE-2016-2343

The CVE-2016-2343 in Patterson Dental Eaglesoft 17 involves a hard-coded database password (sql) used by the dba account, enabling a remote attacker with network access to obtain sensitive patient data from the Dental.DB via SQL statements. Affected component is the Eaglesoft database backend; ro...

10CVSS9.4AI score0.02431EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/04/01 11:0 p.m.22 views

CVE-2016-2343

Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote attackers to obtain sensitive Dental.DB patient information via SQL statements...

9.6AI score0.02431EPSS
Exploits0References2
CNVD
CNVD
added 2016/03/31 12:0 a.m.3 views

Patterson Dental Eaglesoft Information Disclosure Vulnerability

Patterson Dental Eaglesoft is a suite of dental records software from Patterson Dental Supply Patterson Dental in the United States. An information disclosure vulnerability exists in Patterson Dental Eaglesoft that arises from the program using the same hard-coded credentials across different use...

10CVSS6.1AI score0.02431EPSS
Exploits0References1
CERT
CERT
added 2016/03/30 12:0 a.m.32 views

Patterson Dental Eaglesoft uses a hard-coded database password across installations

Overview Patterson Dental Eaglesoft is a dental records software. Eaglesoft uses a hard-coded database password that is shared across all installations. Description CWE-798: Use of Hard-coded Credentials- CVE-2016-2343 According to the researcher, Eaglesoft uses hard-coded credentials to access a...

10CVSS9.6AI score0.02431EPSS
Exploits0References3
Rows per page
Query Builder