VYPR
Unrated severityNVD Advisory· Published Dec 15, 2021· Updated Sep 16, 2024

ICSMA-21-343-01 Hillrom Welch Allyn Cardio Products

CVE-2021-43935

Description

The impacted products, when configured to use SSO, are affected by an improper authentication vulnerability. This vulnerability allows the application to accept manual entry of any active directory (AD) account provisioned in the application without supplying a password, resulting in access to the application as the supplied AD account, with all associated privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.