PT-2021-21731 · Nuance · Nuance Winscribe Dictation

Published

2021-08-12

Updated

2021-08-23

CVE-2021-37599

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Nuance Winscribe Dictation version 4.1.0.99

Description The exporter/Login.aspx login form in Nuance Winscribe Dictation is vulnerable to SQL injection, allowing a remote, unauthenticated attacker to read the database and potentially execute code via the txtPassword parameter.

Recommendations For Nuance Winscribe Dictation version 4.1.0.99, consider disabling the txtPassword parameter in the exporter/Login.aspx login form as a temporary workaround until a patch is available. Restrict access to the exporter/Login.aspx page to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2021-37599

Affected Products

Nuance Winscribe Dictation

PT-2021-21731 · Nuance · Nuance Winscribe Dictation

CVE-2021-37599

Weakness Enumeration

Related Identifiers

Affected Products

References · 6