Security Advisory

CVE-2022-38765

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-08 00:00:00

Last updated 2025-04-23 15:48:17

Assigner mitre

State PUBLISHED

Description

Canon Medical Informatics Vitrea Vision 7.7.76.1 does not adequately enforce access controls. An authenticated user is able to gain unauthorized access to imaging records by tampering with the vitrea-view/studies/search patientId parameter.

← Browse all CVEs View on cve.org ↗