Vulnerabilities (CVE)

Filtered by vendor Cerner Subscribe
Filtered by product Mobile Care
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-36385 1 Cerner 1 Mobile Care 2024-11-21 10.0 HIGH 9.8 CRITICAL
A SQL Injection vulnerability in Cerner Mobile Care 5.0.0 allows remote unauthenticated attackers to execute arbitrary SQL commands via a Fullwidth Apostrophe (aka U+FF07) in the default.aspx User ID field. Arbitrary system commands can be executed through the use of xp_cmdshell.