CVE-2024-23747
- Reference to the description:
- Description:
- The Moderna Sistemas ModernaNet Hospital Management System 2024 is susceptible to an Insecure Direct Object Reference (IDOR) vulnerability. This vulnerability resides in the system's handling of user data access through a /Modernanet/LAUDO/LAU0000100/Laudo?id= URI. By manipulating this id parameter, an attacker can gain access to sensitive medical information.
- Last updated date:
- 02/02/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/02/2024
- Reference url to background