Unauthenticated Remote Access Vulnerability in Open Dental: Complete User Database Transmission

Unauthenticated Remote Access Vulnerability in Open Dental: Complete User Database Transmission

CVE-2018-15718 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Open Dental before version 18.4 transmits the entire user database over the network when a remote unauthenticated user accesses the command prompt. This allows the attacker to gain access to usernames, password hashes, privilege levels, and more.

Learn more about our Network Penetration Testing.