CVE-2026-42517

Vulnerability Description

This vulnerability exists in e-Sushrut due to the use of reversible Base64 encoding for protecting sensitive data. An authenticated attacker could exploit this vulnerability by decoding and manipulating Base64-encoded parameters in the request URL to gain unauthorized access to sensitive information on the targeted system.

Vulnerability Details

Published Date

April 29, 2026

Last Modified

April 29, 2026

CWE ID

CWE-639

Source

NVD

Vendor

CDAC-Noida

Product

e-Sushrut, Hospital Management Information System (HMIS)

External References

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2026-0207

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment