Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
eClinicalWorks Population Health (CCMR) suffers from a session fixation vulnerability. When authenticating a user, the application does not assign a new session ID, making it possible to use an existent session ID.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EClinicalWorks Population Health Client Portal 会话固定漏洞
Vulnerability Description
EClinicalWorks Population Health(又名eClinicalWorks CCMR)是美国EClinicalWorks公司的一套人口健康解决方案,它提供仪表板分析、患者预约、护理计划和患者转诊安全网络等功能。Client Portal是其中的一个门户网站。 eClinicalWorks Population Health中存在会话固定漏洞,该漏洞源于程序授权用户没有分配新的会话ID。攻击者可利用该漏洞劫持会话。
CVSS Information
N/A
Vulnerability Type
N/A