Unrated severityNVD Advisory· Published Dec 8, 2022· Updated Apr 23, 2025

CVE-2022-38765

Description

Canon Medical Informatics Vitrea Vision 7.7.76.1 does not adequately enforce access controls. An authenticated user is able to gain unauthorized access to imaging records by tampering with the vitrea-view/studies/search patientId parameter.

Affected products

Canon Medical Informatics/Vitrea Visiondescription
Vital Images/Vitrea Visionllm-create
Range: =7.7.76.1

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.vitalimages.com/customer-success-support-program/vital-images-software-security-updates/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000