CVE-2026-42516

Vulnerability Description

This vulnerability exists in e-Sushrut due to improper authorization checks during resource access. An authenticated attacker could exploit this vulnerability by manipulating encoded parameters in the request URL to gain unauthorized access to patient accounts on the targeted system.

Vulnerability Details

Published Date

April 29, 2026

Last Modified

April 29, 2026

CWE ID

CWE-639

Source

NVD

Vendor

CDAC-Noida

Product

e-Sushrut, Hospital Management Information System (HMIS)

External References

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2026-0207

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment