Medium severity6.5NVD Advisory· Published Jun 2, 2025· Updated Jun 17, 2026
CVE-2025-27955
CVE-2025-27955
Description
Clinical Collaboration Platform 12.2.1.5 has a weak logout system where the session token remains valid after logout and allows a remote attacker to obtain sensitive information and execute arbitrary code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Clinical Collaboration Platform/Clinical Collaboration Platformdescription
- Range: 12.2.1.5
Patches
Vulnerability mechanics
References
1- github.com/intruderlabs/cvex/tree/main/Carestream/session-token-in-urlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.