Security Advisory

CVE-2021-32077

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-06 23:00:51

Last updated 2024-08-03 23:17:28

Assigner mitre

State PUBLISHED

Description

Primary Source Verification in VerityStream MSOW Solutions before 3.1.1 allows an anonymous internet user to discover Social Security Number (SSN) values via a brute-force attack on a (sometimes hidden) search field, because the last four SSN digits are part of the supported combination of search selectors. This discloses doctors and nurses social security numbers and PII.

← Browse all CVEs View on cve.org ↗