CNNVD-202510-1682 Information

CNNVD ID

CNNVD-202510-1682

Related CVE

CVE-2025-11671

• CNNVD Published: 2025-10-13

Description (Chinese)

EBM Uniweb/SoliPACS WebServer是中国台湾商之器（EBM）公司的一个医学影像归档与通信系统。 EBM Uniweb/SoliPACS WebServer存在访问控制错误漏洞，该漏洞源于缺少身份验证，可能导致未经验证的远程攻击者访问特定页面获取账户名和IP地址等信息。

Description (English)

EBM Uniweb/SoliPACS WebServer is a medical image filing and communication system of the China Taiwan Business Enterprise (EBM). EBM Uniweb/SolipACS WebServer has an access control error that stems from a lack of identification, which may lead uncertified remote assailants to access specific pages for information such as account names and IP addresses.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

商之器

Published

2025-10-13

Last Modified

2026-02-24

References

https://www.twcert.org.tw/en/cp-139-10420-d1a4f-2.html https://www.twcert.org.tw/tw/cp-132-10419-de614-1.html

Patch

https://en.ebmtech.com/solipacs-web-viewer