Security Advisory

CVE-2020-16218

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-11 12:50:08

Last updated 2024-08-04 13:37:54

Assigner icscert

State PUBLISHED

Description

In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is then used as a webpage and served to other users. Successful exploitation could lead to unauthorized access to patient data via a read-only web application.

← Browse all CVEs View on cve.org ↗