Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-11693
HistoryJul 28, 2017 - 1:00 p.m.

CVE-2017-11693

2017-07-2813:00:00
mitre
www.cve.org
4

AI Score

9.2

Confidence

High

EPSS

0.002

Percentile

53.6%

JSON

MEDHOST Document Management System contains hard-coded credentials that are used for customer database access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with the database may be able to obtain or modify sensitive patient and financial information. PostgreSQL is used as the Document Management System database. The account name is dms. The password is hard-coded throughout the application, and is the same across all installations. Customers do not have the option to change passwords. The dms account for PostgreSQL has access to the database schema for Document Management System.

Related

prion 1
cve 1
nvd 1
packetstorm 2
prion
prion
Hardcoded credentials
2017-07-28 13:29:00
cve
cve
CVE-2017-11693
2017-07-28 13:29:00
nvd
nvd
CVE-2017-11693
2017-07-28 13:29:00
packetstorm
packetstorm
MEDHOST Document Management System Hardcoded Credentials
2017-07-27 00:00:00
MEDHOST Connex Hardcoded Password
2017-07-31 00:00:00

AI Score

9.2

Confidence

High

EPSS

0.002

Percentile

53.6%

JSON
Related for CVELIST:CVE-2017-11693
prion1cve1nvd1packetstorm2