Vulnerabilities > CVE-2021-44160 - Unspecified vulnerability in CTH Carinal Tien Hospital Health Report System
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Carinal Tien Hospital Health Report System’s login page has improper authentication, a remote attacker can acquire another general user’s privilege by modifying the cookie parameter without authentication. The attacker can then perform limited operations on the system or modify data, making the service partially unavailable to the user.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |