Back to CVE List

CVE-2025-30035

Vulnerability Description

The vulnerability enables an attacker to fully bypass authentication in CGM CLININET and gain access to any active user account by supplying only the username, without requiring a password or any other credentials. Obtaining a session ID is sufficient for session takeover and grants access to the system with the privileges of the targeted user.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-306
Source
NVD
Vendor
CGM
Product
CGM CLININET

External References

Discussion (0)

Add Comment

No comments yet. Be the first!