|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-07-16 | |
| Rule Name: | Infinitt Medical Image Archiving and Communication System Upload.asmx Arbitrary File Upload Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The Infinitt Medical Image Archiving and Communication System is a professional medical imaging management system that allows medical institutions to efficiently store, retrieve, manage, and share medical imaging data to support clinical diagnosis and treatment decisions. The Upload.amx file lacks verification for uploading files, creating an arbitrary file upload vulnerability that attackers can exploit to upload malicious files. | |
| Impact: | Attackers can upload viruses, Trojans, WebShell, other malicious scripts or pictures containing scripts to the server, and attackers can use these files for subsequent attacks. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |