Vulnerabilities > Cerner > Mobile Care > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-08-24 CVE-2021-36385 SQL Injection vulnerability in Cerner Mobile Care 5.0.0
A SQL Injection vulnerability in Cerner Mobile Care 5.0.0 allows remote unauthenticated attackers to execute arbitrary SQL commands via a Fullwidth Apostrophe (aka U+FF07) in the default.aspx User ID field.
network
low complexity
cerner CWE-89
critical
9.8