Vulnerabilities > CVE-2012-4952 - Credentials Management vulnerability in Dentrix G5

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
dentrix
CWE-255

Summary

Henry Schein Dentrix G5 before 15.1.294 has a single internal-database password that is shared across different customers' installations, which allows remote attackers to obtain sensitive information about patients by leveraging knowledge of this password from another installation.

Vulnerable Configurations

Part Description Count
Application
Dentrix
1

Common Weakness Enumeration (CWE)