Ephiphanyheathdata Cardio Server : Security vulnerabilities, CVEs

CVE-2015-6538

The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles authentication requests, which allows remote attackers to conduct LDAP injection attacks, and consequently bypass intended access restrictions, via a crafted URL.

Max CVSS

9.8

EPSS Score

0.32%

Published

2015-12-27

Updated

2015-12-28

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Ephiphanyheathdata » Cardio Server : Security Vulnerabilities, CVEs, CVSS score >= 4

CVE-2015-6538