Vulnerabilities > CVE-2020-14487 - Unspecified vulnerability in Freemedsoftware Openclinic GA 5.09.02

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
freemedsoftware

Summary

OpenClinic GA 5.09.02 contains a hidden default user account that may be accessed if an administrator has not expressly turned off this account, which may allow an attacker to login and execute arbitrary commands.

Vulnerable Configurations

Part Description Count
Application
Freemedsoftware
1