Vulnerability Details : CVE-2017-11743
MEDHOST Connex contains a hard-coded Mirth Connect admin credential that is used for customer Mirth Connect management access. An attacker with knowledge of the hard-coded credential and the ability to communicate directly with the Mirth Connect management console may be able to intercept sensitive patient information. The admin account password is hard-coded as $K8t1ng throughout the application, and is the same across all installations. Customers do not have the option to change the Mirth Connect admin account password. The Mirth Connect admin account is created during the Connex install. The plaintext account password is hard-coded multiple times in the Connex install and update scripts.
Products affected by CVE-2017-11743
- cpe:2.3:a:medhost:connex:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-11743
0.20%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 57 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-11743
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2017-11743
-
The product contains hard-coded credentials, such as a password or cryptographic key.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-11743
-
http://seclists.org/fulldisclosure/2017/Jul/75
Full Disclosure: CVE-2017-11743 MEDHOST Connex contains hard-coded Mirth Connect admin passwordMailing List;Third Party Advisory
-
http://www.securityfocus.com/bid/100086
MEDHOST Connex CVE-2017-11743 Hardcoded Password Security Bypass VulnerabilityThird Party Advisory;VDB Entry
Jump to