PT-2021-11520 · Unknown · Star Practice Management Web

Yoann Chevalier

·

Published

2021-01-29

·

Updated

2021-07-21

·

CVE-2020-28402

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: Star Practice Management Web version 2019.2.0.6
Description: An improper authorization issue exists, allowing unauthorized users to access the Launcher Configuration Panel.
Recommendations: For version 2019.2.0.6, restrict access to the Launcher Configuration Panel to prevent unauthorized access until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2020-28402

Affected Products

Star Practice Management Web