WebEOC prior to 6.0.2 allows remote malicious users to obtain valid usernames via the HTML source of the WebEOC login webpage, which could be useful in other attacks such as locking out valid users via brute force methods.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
esi products webeoc |