PT-2021-23863 · Unknown · Patient Information Center Ix

Published

2021-12-27

Updated

2022-01-12

CVE-2021-43548

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Patient Information Center iX (PIC iX) Versions C.02 and C.03

Description The issue arises because the software receives input or data but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly.

Recommendations For Patient Information Center iX (PIC iX) Versions C.02 and C.03, consider implementing input validation to ensure that all data received has the necessary properties to be processed safely and correctly. As a temporary workaround, restrict the input to only trusted sources until a proper validation mechanism is in place.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2021-43548

Affected Products

Patient Information Center Ix

PT-2021-23863 · Unknown · Patient Information Center Ix

CVE-2021-43548

Weakness Enumeration

Related Identifiers

Affected Products

References · 4