CVE-2020-28401
- EPSS 0.34%
- Veröffentlicht 29.01.2021 07:15:16
- Zuletzt bearbeitet 30.05.2025 16:15:25
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access WIP details about jobs he should not have access to.
CVE-2020-28402
- EPSS 0.35%
- Veröffentlicht 29.01.2021 07:15:16
- Zuletzt bearbeitet 30.05.2025 16:15:25
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access Launcher Configuration Panel.
CVE-2020-28404
- EPSS 0.34%
- Veröffentlicht 29.01.2021 07:15:16
- Zuletzt bearbeitet 30.05.2025 16:15:26
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access the Billing page without the appropriate privileges.
CVE-2020-28405
- EPSS 0.51%
- Veröffentlicht 29.01.2021 07:15:16
- Zuletzt bearbeitet 30.05.2025 16:15:26
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to change the privileges of any user of the application. This can be used to grant himself the administrative role or rem...
CVE-2020-28406
- EPSS 0.34%
- Veröffentlicht 29.01.2021 07:15:16
- Zuletzt bearbeitet 30.05.2025 16:15:26
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access details about jobs he should not have access to via the Audit Trail Feature.