cvedb.io
CVE-2021-43355
HIGH · CVSS 7.3
EPSS exploitation probability: 0%
Published 2022-01-21T19:15:09.270 · Last modified 2026-06-17T04:10:52.840

Summary

Fresenius Kabi Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 allows user input to be validated on the client side without authentication by the server. The server should not rely on the correctness of the data because users might not support or block JavaScript or intentionally bypass the client-side checks. An attacker with knowledge of the service user could circumvent the client-side control and login with service privileges.

Affected products

fresenius-kabi — agilia_partner_maintenance_software

Does this affect you?

Add your gear to cvedb and we'll alert you only when fresenius-kabi ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.