Critical Infrastructure Sectors: Healthcare and Public Health
Sensitive endpoints in Fresenius Kabi Agilia Link+ v3.0 and prior can be accessed without any authentication information such as the session cookie. An attacker can send requests to sensitive endpoints as an unauthenticated user to perform critical actions or modify critical configuration parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fresenius-kabi agilia partner maintenance software |
||
fresenius-kabi vigilant centerium 1.0 |
||
fresenius-kabi vigilant insight 1.0 |
||
fresenius-kabi vigilant mastermed 1.0 |
||
fresenius-kabi agilia_connect_firmware |
||
fresenius-kabi link\\+_agilia_firmware |
||
fresenius-kabi link\\+_agilia_firmware 3.0 |