The Le-yan dental management system contains a hard-coded credentials vulnerability in the web page source code, which allows an unauthenticated remote attacker to acquire administrator’s privilege and control the system or disrupt service.
References
Link | Resource |
---|---|
https://www.twcert.org.tw/tw/cp-132-5510-45d71-1.html | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Jan 2022, 03:30
Type | Values Removed | Values Added |
---|---|---|
First Time |
Le-yan Dental Management System Project
Le-yan Dental Management System Project le-yan Dental Management System |
|
CWE | CWE-798 | |
References | (MISC) https://www.twcert.org.tw/tw/cp-132-5510-45d71-1.html - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 10.0
v3 : 9.8 |
CPE | cpe:2.3:a:le-yan_dental_management_system_project:le-yan_dental_management_system:2.8.5:*:*:*:*:*:*:* |
14 Jan 2022, 05:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-01-14 05:15
Updated : 2023-12-10 14:09
NVD link : CVE-2022-22056
Mitre link : CVE-2022-22056
CVE.ORG link : CVE-2022-22056
JSON object : View
Products Affected
le-yan_dental_management_system_project
- le-yan_dental_management_system
CWE
CWE-798
Use of Hard-coded Credentials