CVE-2024-23747 Information

Description

The Moderna Sistemas ModernaNet Hospital Management System 2024 is susceptible to an Insecure Direct Object Reference (IDOR) vulnerability. This vulnerability resides in the system’s handling of user data access through a /Modernanet/LAUDO/LAU0000100/Laudo?id= URI. By manipulating this id parameter an attacker can gain access to sensitive medical information.

Reference

https://modernasistemas.com.br/sitems/ https://github.com/louiselalanne/CVE-2024-23747