CVE-2021-44160

Name of the Vulnerable Software and Affected Versions: Carinal Tien Hospital Health Report System (affected versions not specified)

Description: The system's login page has improper authentication, allowing a remote attacker to acquire another user's privilege by modifying the cookie parameter without authentication. This enables the attacker to perform limited operations on the system, modify data, and make the service partially unavailable to the user.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.