Forwarded from Taiwan Computer Network Crisis Response and Coordination Center (TWCERTCC-200-202509-00000003)
[Description]
[Changing Information Technology Inc. | Medical Record Scanning and Repository System - Hard-coded Credentials] (CVE-2025-8857, CVSS: 9.8) An unauthenticated remote attacker can exploit administrative accounts and passcodes written into the source code to log into the system.
[Affected Platforms]
Medical Record Scanning and Repository System versions prior to and including 2.4.23.2131, excluding versions 1.5.x.x and 2.0.x.x
[Recommended Action]
Update to version 2.4.23.2131 or later.
[References]
https://www.twcert.org.tw/tw/cp-132-10362-c6021-1.html
[Security Vulnerability Warning] Changing Information Technology Inc. | Medical Record Scanning and Storage System - Hard-coded Credentials
Type:行政公告
Pubish Date:2025/09/04 至 2026/03/04
Visitors:89
相關附件
返回列表
