Hardcoded Credentials in MEDHOST Perioperative Information Management System

Hardcoded Credentials in MEDHOST Perioperative Information Management System

CVE-2016-4328 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

MEDHOST Perioperative Information Management System (aka PIMS or VPIMS) before 2015R1 has hardcoded credentials, which makes it easier for remote attackers to obtain sensitive information via direct requests to the application database server.

Learn more about our Cis Benchmark Audit For Server Software.