CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-43355

Fresenius Kabi Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 allows user input to be validated on the client side without authentication by the server. The server should not rely on the correctness of the data because users might not support or block JavaScript or intentionally bypass the client-side checks. An attacker with knowledge of the service user could circumvent the client-side control and login with service privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.0%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

Products affected by CVE-2021-43355

Fresenius-Kabi » Agilia Partner Maintenance Software » Version: Any

cpe:2.3:a:fresenius-kabi:agilia_partner_maintenance_software:*
Fresenius-Kabi » Vigilant Centerium » Version: 1.0

cpe:2.3:a:fresenius-kabi:vigilant_centerium:1.0
Fresenius-Kabi » Vigilant Insight » Version: 1.0

cpe:2.3:a:fresenius-kabi:vigilant_insight:1.0
Fresenius-Kabi » Vigilant Mastermed » Version: 1.0

cpe:2.3:a:fresenius-kabi:vigilant_mastermed:1.0
Fresenius-Kabi » Agilia Connect » Version: N/A

cpe:2.3:h:fresenius-kabi:agilia_connect:-
Fresenius-Kabi » Link+ Agilia » Version: N/A

cpe:2.3:h:fresenius-kabi:link+_agilia:-
Fresenius-Kabi » Agilia Connect Firmware » Version: Any

cpe:2.3:o:fresenius-kabi:agilia_connect_firmware:*
Fresenius-Kabi » Link+ Agilia Firmware » Version: Any

cpe:2.3:o:fresenius-kabi:link+_agilia_firmware:*
Fresenius-Kabi » Link+ Agilia Firmware » Version: 3.0

cpe:2.3:o:fresenius-kabi:link+_agilia_firmware:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-43355

Products

Pricing

Contact Us