The Le-yan dental management system contains a hard-coded credentials vulnerability in the web page source code, which allows an unauthenticated remote attacker to acquire administrator’s privilege and control the system or disrupt service.
References
Link | Resource |
---|---|
https://www.twcert.org.tw/tw/cp-132-5510-45d71-1.html | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Jan 2022, 03:30
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-798 | |
References | (MISC) https://www.twcert.org.tw/tw/cp-132-5510-45d71-1.html - Third Party Advisory | |
CPE | cpe:2.3:a:le-yan_dental_management_system_project:le-yan_dental_management_system:2.8.5:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 10.0
v3 : 9.8 |
14 Jan 2022, 05:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-01-14 05:15
Updated : 2024-02-04 22:08
NVD link : CVE-2022-22056
Mitre link : CVE-2022-22056
CVE.ORG link : CVE-2022-22056
JSON object : View
Products Affected
le-yan_dental_management_system_project
- le-yan_dental_management_system
CWE
CWE-798
Use of Hard-coded Credentials