Cgm Cgm Clininet
24 CVEs affecting Cgm Cgm Clininet. Latest disclosed: 2026-03-02. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-58406 | | 2026-03-02 | The CGM CLININET application respond without essential security HTTP headers, exposing users to client‑side attacks such as clickjacking, MIME sniffing, unsafe… | |
CVE-2025-58405 | | 2026-03-02 | The CGM CLININET application does not implement any mechanisms that prevent clickjacking attacks, neither HTTP security headers nor HTML-based frame‑busting pr… | |
CVE-2025-58402 | | 2026-03-02 | The CGM CLININET application uses direct, sequential object identifiers "MessageID" without proper authorization checks. By modifying the parameter in the GET… | |
CVE-2025-30062 | | 2026-03-02 | In the "CheckUnitCodeAndKey.pl" service, the "validateOrgUnit" function is vulnerable to SQL injection. | |
CVE-2025-30044 | | 2026-03-02 | In the endpoints "/cgi-bin/CliniNET.prd/utils/usrlogstat_simple.pl", "/cgi-bin/CliniNET.prd/utils/usrlogstat.pl", "/cgi-bin/CliniNET.prd/utils/userlogstat2.pl"… | |
CVE-2025-30042 | | 2026-03-02 | The CGM CLININET system provides smart card authentication; however, authentication is conducted locally on the client device, and, in reality, only the certif… | |
CVE-2025-30035 | | 2026-03-02 | The vulnerability enables an attacker to fully bypass authentication in CGM CLININET and gain access to any active user account by supplying only the username… | |
CVE-2025-30064 | | 2025-08-27 | An insufficiently secured internal function allows session generation for arbitrary users. The decodeParam function checks the JWT but does not verify which si… | |
CVE-2025-30063 | | 2025-08-27 | The configuration file containing database logins and passwords is readable by any local user. | |
CVE-2025-30061 | | 2025-08-27 | In the "utils/Reporter/OpenReportWindow.pl" service, there is an SQL injection vulnerability through the "UserID" parameter. | |
CVE-2025-30060 | | 2025-08-27 | In the ReturnUserUnitsXML.pl service, the "getUserInfo" function is vulnerable to SQL injection through the "UserID" parameter. | |
CVE-2025-30059 | | 2025-08-27 | In the PrepareCDExportJSON.pl service, the "getPerfServiceIds" function is vulnerable to SQL injection. | |
CVE-2025-30058 | | 2025-08-27 | In the PatientService.pl service, the "getPatientIdentifier" function is vulnerable to SQL injection through the "pesel" parameter. | |
CVE-2025-30057 | | 2025-08-27 | In UHCRTFDoc, the filename parameter can be exploited to execute arbitrary code via command injection into the system() call in the ConvertToPDF function. | |
CVE-2025-30056 | | 2025-08-27 | The RunCommand function accepts any parameter, which is then passed for execution in the shell. This allows an attacker to execute arbitrary code on the system. | |
CVE-2025-30055 | | 2025-08-27 | The "system" function receives untrusted input from the user. If the "EnableJSCaching" option is enabled, it is possible to execute arbitrary code provided as… | |
CVE-2025-30048 | | 2025-08-27 | The "serverConfig" endpoint, which returns the module configuration including credentials, is accessible without authentication. | |
CVE-2025-30041 | | 2025-08-27 | The paths "/cgi-bin/CliniNET.prd/utils/userlogstat.pl", "/cgi-bin/CliniNET.prd/utils/usrlogstat.pl", and "/cgi-bin/CliniNET.prd/utils/dblogstat.pl" expose data… | |
CVE-2025-30040 | | 2025-08-27 | The vulnerability allows unauthenticated users to download a file containing session ID data by directly accessing the "/cgi-bin/CliniNET.prd/utils/userlogxls… | |
CVE-2025-30039 | | 2025-08-27 | Unauthenticated access to the "/cgi-bin/CliniNET.prd/GetActiveSessions.pl" endpoint allows takeover of any user session logged into the system, including users… |