Skip to main content

Defibrillator Dashboard

6 CVEs product

Monthly

CVE-2021-27485 HIGH This Week

ZOLL Defibrillator Dashboard, v prior to 2.2,The application allows users to store their passwords in a recoverable format, which could allow an attacker to retrieve the credentials from the web. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Defibrillator Dashboard
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-27483 HIGH This Week

ZOLL Defibrillator Dashboard, v prior to 2.2,The affected products contain insecure filesystem permissions that could allow a lower privilege user to escalate privileges to an administrative level. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Defibrillator Dashboard
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2021-27479 MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2,The affected product’s web application could allow a low privilege user to inject parameters to contain malicious scripts to be executed by higher. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Defibrillator Dashboard
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2021-27489 HIGH This Week

ZOLL Defibrillator Dashboard, v prior to 2.2, The web application allows a non-administrative user to upload a malicious file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Defibrillator Dashboard
NVD
CVSS 3.1
8.8
EPSS
1.3%
CVE-2021-27487 MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2, The affected products contain credentials stored in plaintext. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Defibrillator Dashboard
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2021-27481 MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2, The affected products utilize an encryption key in the data exchange process, which is hardcoded. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Defibrillator Dashboard
NVD
CVSS 3.1
5.5
EPSS
0.2%
EPSS 1% CVSS 7.5
HIGH This Week

ZOLL Defibrillator Dashboard, v prior to 2.2,The application allows users to store their passwords in a recoverable format, which could allow an attacker to retrieve the credentials from the web. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Defibrillator Dashboard
NVD
EPSS 0% CVSS 7.8
HIGH This Week

ZOLL Defibrillator Dashboard, v prior to 2.2,The affected products contain insecure filesystem permissions that could allow a lower privilege user to escalate privileges to an administrative level. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Defibrillator Dashboard
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2,The affected product’s web application could allow a low privilege user to inject parameters to contain malicious scripts to be executed by higher. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Defibrillator Dashboard
NVD
EPSS 1% CVSS 8.8
HIGH This Week

ZOLL Defibrillator Dashboard, v prior to 2.2, The web application allows a non-administrative user to upload a malicious file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Defibrillator Dashboard
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2, The affected products contain credentials stored in plaintext. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Defibrillator Dashboard
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2, The affected products utilize an encryption key in the data exchange process, which is hardcoded. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Defibrillator Dashboard
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy