2 matches found
CVE-2024-6795
Connex Health Portal (Baxter) is affected by CVE-2024-6795: SQL injection in Baxter Connex Health Portal prior to 8/30/2024 that could let an unauthenticated remote attacker access, modify, disclose database content, or perform administrative actions including shutting down the database. Root cau...
CVE-2024-6796
Baxter Connex Health Portal has an improper access control vulnerability (CVE-2024-6796) affecting versions prior to 8/30/2024, enabling an unauthenticated remote attacker to access/modify the portal’s database. Exploitation details are not provided in the documents; the CVSSv3.1 base score is 8....