Lucene search
+L

5 matches found

Prion
Prion
added 2022/01/21 7:15 p.m.19 views

Authentication flaw

Fresenius Kabi Vigilant Software Suite Mastermed Dashboard version 2.0.1.3 issues authentication tokens to authenticated users that are signed with a symmetric encryption key. An attacker in possession of the key can issue valid JWTs and impersonate arbitrary users...

6.5CVSS7.5AI score0.00313EPSS
Exploits0References1Affected Software6
Cvelist
Cvelist
added 2022/01/21 6:17 p.m.30 views

CVE-2021-44464 Fresenius Kabi Agilia Connect Infusion System hard coded credentials

Vigilant Software Suite Mastermed Dashboard version 2.0.1.3 contains service credentials likely to be common across all instances. An attacker in possession of the password may gain privileges on all installations of this software...

6.3CVSS9.1AI score0.0064EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/01/21 12:0 a.m.4 views

PT-2022-9374 · Fresenius Kabi · Fresenius Kabi Vigilant Software Suite

Name of the Vulnerable Software and Affected Versions: Fresenius Kabi Vigilant Software Suite Mastermed Dashboard version 2.0.1.3 Description: The issue allows an attacker to identify and access files on the server due to the option for automated indexing directory listing being activated. When...

5.3CVSS5AI score0.00845EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/01/21 12:0 a.m.5 views

PT-2022-9376 · Fresenius Kabi · Fresenius Kabi Vigilant Mastermed

Name of the Vulnerable Software and Affected Versions: Fresenius Kabi Vigilant MasterMed version 2.0.1.3 Description: An attacker with physical access to the host can extract secrets from the registry and create valid JWT tokens for the application, allowing them to impersonate arbitrary users...

6.5CVSS5.5AI score0.00218EPSS
Exploits0References5
CNVD
CNVD
added 2020/05/08 12:0 a.m.9 views

IMGTech Zoneplayer ZInsX.ocx ActiveX Control Input Validation Error Vulnerability

IMGTech Zoneplayer is a media player from the Korean company IMGTech.ZInsX.ocx ActiveX Control is one of the controls. An input validation error vulnerability exists in ZInsX.ocx ActiveX Control 2.0.1.3 and earlier versions of IMGTech Zoneplayer. An attacker can exploit this vulnerability to...

8.8CVSS7.4AI score0.01168EPSS
Exploits0References1
Rows per page
Query Builder