CVE-2005-2285

WebEOC before 6.0.2 stores sensitive information in locations such as URIs, web pages, and configuration files, which allows remote attackers to obtain information such as Usernames, Passwords, Emergency information, medical information, and system configuration.

Published: Jul 18, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-2285
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
esi_products / webeoc	-	6.0.1.x

http://www.kb.cert.org/vuls/id/165290
http://www.kb.cert.org/vuls/id/JGEI-6BWPXL

Vulnerability Database

290,301

CVE-2005-2285