CVE-2025-11672

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...

CVE-2025-11671

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain information such as account names and IP addresses...

EUVD-2025-34052

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...

CVE-2025-11672

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...

CVE-2025-11671

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain information such as account names and IP addresses...

CVE-2025-11672

CVE-2025-11672 concerns Uniweb/SoliPACS WebServer by EBM Technologies with a Missing Authentication vulnerability that allows unauthenticated remote access to a page exposing user group names. Affected component: web server software; root cause described as missing authentication/authorization on...

CVE-2025-11672 EBM Technologies｜Uniweb/SoliPACS WebServer - Missing Authentication

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...

CVE-2025-11672 EBM Technologies｜Uniweb/SoliPACS WebServer - Missing Authentication

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...

EBM Uniweb/SoliPACS WebServer 访问控制错误漏洞

EBM Uniweb/SoliPACS WebServer is a medical image archiving and communication system from Enterprise Business Machine EBM, Inc. of Taiwan, China. An access control error vulnerability exists in the EBM Uniweb/SoliPACS WebServer that stems from a lack of authentication, which could allow an...

EBM Uniweb/SoliPACS WebServer 访问控制错误漏洞

EBM Uniweb/SoliPACS WebServer is a medical image archiving and communication system from Enterprise Business Machine EBM, Inc. of Taiwan, China. An access control error vulnerability exists in the EBM Uniweb/SoliPACS WebServer that stems from a lack of authentication and could allow an...

CVE-2024-26262

EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...

Sql injection

EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...

CVE-2024-26262

The CVE-2024-26262 entry concerns EBM Technologies Uniweb/SoliPACS WebServer. The Connected documents confirm a concrete issue: the WebServer’s query function does not properly restrict user input, enabling SQL injection by authenticated regular users. This can lead to reading/modifying/deleting ...

CVE-2024-26262 EBM Technologies Uniweb/SoliPACS WebServer - SQL Injection

EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...

CVE-2024-26262 EBM Technologies Uniweb/SoliPACS WebServer - SQL Injection

EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...

EBM Technologies Uniweb SQL Injection Vulnerability

EBM Technologies Uniweb is a zero footprint universal viewer from EBM Technologies that works in any web browser and supports viewing DICOM and non-DICOM data. An SQL injection vulnerability exists in the EBM Technologies Uniweb/SoliPACS WebServer, which stems from the query function lacking prop...