CVE-2021-32077

CVE-2021-32077

Primary Source Verification in VerityStream MSOW Solutions before 3.1.1 allows an anonymous internet user to discover Social Security Number (SSN) values via a brute-force attack on a (sometimes hidden) search field, because the last four SSN digits are part of the supported combination of search selectors. This discloses doctors’ and nurses’ social security numbers and PII.

Source: CVE-2021-32077

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다