CVE-2026-8032 in e-Clinic Healthcare System ECHSthông tin

Tóm tắt

Bởi MITRE • 06/05/2026

A flaw has been found in PicoTronica e-Clinic Healthcare System ECHS 5.7. The impacted element is an unknown function of the file /cdemos/echs/priv/echs.js. This manipulation of the argument ADMIN_KEY causes hard-coded credentials. The attack is possible to be carried out remotely. The exploit has been published and may be used. Upgrading to version 5.7.1 is sufficient to resolve this issue. The affected component should be upgraded. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

VulDB

Tiết lộ

06/05/2026

Kiểm duyệt

được chấp nhận

mục

VDB-361358

CPE

sẵn sàng

CWE

CWE-798 (Đã xác nhận)

Khai thác

Tải xuống

CVSS

7.3 (VulDB)

EPSS

0.00050

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-8032
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-8032
CVE Details	https://www.cvedetails.com/cve/CVE-2026-8032/

◂ Trước Tổng Quan Tiếp theo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!