Security Advisory

CVE-2025-8307

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-08 13:43:37
Last updated 2026-01-08 14:18:51
Assigner CERT-PL
State PUBLISHED

Description

Asseco InfoMedica is a comprehensive solution used to manage both administrative and medical tasks in the healthcare sector. Passwords of all users are stored in a database in an encoded format. An attacker in possession of these encoded passwords is able to decode them by using an algorithm embedded in the client-side part of the software.  This vulnerability has been fixed in versions 4.50.1 and 5.38.0