4 matches found
CVE-2021-33848
Fresenius Kabi Vigilant Software Suite Mastermed Dashboard version 2.0.1.3 is vulnerable to reflected cross-site scripting attacks. An attacker could inject JavaScript in a GET parameter of HTTP requests and perform unauthorized actions such as stealing internal information and performing actions...
CVE-2021-23207
An attacker with physical access to the host can extract the secrets from the registry and create valid JWT tokens for the Fresenius Kabi Vigilant MasterMed version 2.0.1.3 application and impersonate arbitrary users. An attacker could manipulate RabbitMQ queues and messages by impersonating user...
CVE-2021-23207
CVE-2021-23207 affects Fresenius Kabi Vigilant MasterMed 2.0.1.3. The documented issue allows an attacker with physical access to extract secrets from the device registry and create valid JWTs, enabling impersonation of arbitrary users and potential manipulation of RabbitMQ queues/messages. The r...
PT-2022-9376 · Fresenius Kabi · Fresenius Kabi Vigilant Mastermed
Name of the Vulnerable Software and Affected Versions: Fresenius Kabi Vigilant MasterMed version 2.0.1.3 Description: An attacker with physical access to the host can extract secrets from the registry and create valid JWT tokens for the application, allowing them to impersonate arbitrary users...