CVE-2026-42514
Vulnerability Description
This vulnerability exists in e-Sushrut due to exposure of OTPs in plaintext within API responses. A remote attacker could exploit this vulnerability by intercepting API responses containing valid OTPs.
Successful exploitation of this vulnerability could allow an attacker to impersonate the target user and gain unauthorized access to user accounts on the targeted system.
Successful exploitation of this vulnerability could allow an attacker to impersonate the target user and gain unauthorized access to user accounts on the targeted system.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-319
Source
NVD
Vendor
CDAC-Noida
Product
e-Sushrut, Hospital Management Information System (HMIS)
Discussion (0)
Add Comment
No comments yet. Be the first!