Hidden Default User Account Vulnerability in OpenClinic GA 5.09.02

Hidden Default User Account Vulnerability in OpenClinic GA 5.09.02

CVE-2020-14487 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

OpenClinic GA 5.09.02 contains a hidden default user account that may be accessed if an administrator has not expressly turned off this account, which may allow an attacker to login and execute arbitrary commands.

Learn more about our User Device Pen Test.