Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource
Vulnerability Description
NMIS/BioDose V22.02 and previous version installations where the embedded Microsoft SQLServer Express is used are exposed in the Windows share accessed by clients in networked installs. By default, this directory has insecure directory paths that allow access to the SQL Server database and configuration files, which can contain sensitive data.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
关键资源的不正确权限授予
Vulnerability Title
Mirion Medical EC2 Software NMIS BioDose 安全漏洞
Vulnerability Description
Mirion Medical EC2 Software NMIS BioDose是德国Mirion Medical公司的一个管理和分析生物剂量测定数据的软件。 Mirion Medical EC2 Software NMIS BioDose V22.02及之前版本存在安全漏洞,该漏洞源于Windows共享目录路径不安全,可能导致敏感数据泄露。
CVSS Information
N/A
Vulnerability Type
N/A