CNNVD-202510-3939 Information
CNNVD ID
CNNVD-202510-3939
Related CVE
- CNNVD Published: 2025-10-29
Description (Chinese)
Vertikal Systems Hospital Manager Backend Services是罗马尼亚Vertikal Systems公司的一款医院信息管理系统。 Vertikal Systems Hospital Manager Backend Services 2025年9月19日之前版本存在安全漏洞,该漏洞源于未经验证的ASP.NET跟踪端点trace.axd暴露,可能导致远程攻击者获取实时请求跟踪和敏感信息。
Description (English)
Vertikal Systems Hospital Manager Backend Services is a hospital information management system of the Romanian company Vertikal Systems. The version of Vertikal Systems Hospital Manager Backend Services prior to 19 September 2025 had a security loophole, which originated from the unverified ASP.NET tracking endpoint trace.axd exposure, which could lead to remote attackers obtaining real-time request tracking and sensitive information.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Vertikal Systems
Published
2025-10-29
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-301-01
Patch
https://www.vertikalsystems.com/en/products/pm/contact.php
Share on: