Critical severity9.8NVD Advisory· Published Aug 12, 2021· Updated Jun 17, 2026
CVE-2021-37599
CVE-2021-37599
Description
The exporter/Login.aspx login form in the Exporter in Nuance Winscribe Dictation 4.1.0.99 is vulnerable to SQL injection that allows a remote, unauthenticated attacker to read the database (and execute code in some situations) via the txtPassword parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Nuance/Winscribe Dictationdescription
- Range: 4.1.0.99
Patches
Vulnerability mechanics
References
2- slazarus.xyz/winscribe.htmlnvdExploitThird Party Advisory
- www.nuance.com/dragon/business-solutions/winscribe-dictation-workflow.htmlnvdProductVendor Advisory
News mentions
0No linked articles in our index yet.