Baxter: >> Connex Health Portal Security Vulnerabilities
In Connex health portal released before8/30/2024, SQL injection vulnerabilities were found that could have allowed an unauthenticated attacker to gain unauthorized access to Connex portal's database.
An attacker could have submitted a crafted payload to Connex portal that could have resulted in modification and disclosure of database content
and/or perform administrative operations including shutting down the database.
CVSS Score
10.0
EPSS Score
0.001
Published
2024-09-09
In Baxter Connex health portal released before 8/30/2024, an improper access control vulnerability has been found that could allow an unauthenticated attacker to gain unauthorized access to Connex portal's database and/or modify content.
CVSS Score
8.2
EPSS Score
0.001
Published
2024-09-09