Vulnerabilities > Cerner > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-08-24 CVE-2021-36385 SQL Injection vulnerability in Cerner Mobile Care 5.0.0
A SQL Injection vulnerability in Cerner Mobile Care 5.0.0 allows remote unauthenticated attackers to execute arbitrary SQL commands via a Fullwidth Apostrophe (aka U+FF07) in the default.aspx User ID field.
network
low complexity
cerner CWE-89
critical
 9.8
9.8
2019-04-25 CVE-2018-20053 Unspecified vulnerability in Cerner Connectivity Engine 4 Firmware
An issue was discovered on Cerner Connectivity Engine (CCE) 4 devices.
network
low complexity
cerner
critical
 9.8
9.8