The Moderna Sistemas ModernaNet Hospital Management System 2024 is susceptible to an Insecure Direct Object Reference (IDOR) vulnerability. This vulnerability resides in the system's handling of user data access through a /Modernanet/LAUDO/LAU0000100/Laudo?id= URI. By manipulating this id parameter, an attacker can gain access to sensitive medical information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-01-29T00:00:00
Updated: 2024-08-01T23:13:07.490Z
Reserved: 2024-01-21T00:00:00
Link: CVE-2024-23747
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-01-29T14:15:09.993
Modified: 2024-11-21T08:58:18.813
Link: CVE-2024-23747
Redhat
No data.