- Description
- The Pixmeo Osirix MD Web Portal sends credential information without encryption, which could allow an attacker to steal credentials.
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Secondary
- Base score
- 7.4
- Impact score
- 5.2
- Exploitability score
- 2.2
- Vector string
- CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
- Severity
- HIGH
- ics-cert@hq.dhs.gov
- CWE-319
- Hype score
- Not currently trending
🚨 CVE-2025-27720 ⚠️🔴 CRITICAL (9.3) 🏢 Pixmeo - OsiriX MD 🏗️ 0 🔗 https://t.co/ZVcTnClwZp 🔗 https://t.co/gxbHlQ1p5V 🔗 https://t.co/8rxi6Mj5wN #CyberCron #VulnAlert #InfoSec https://t.co/PkhEw5fUgV
@cybercronai
9 May 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-27720 The Pixmeo Osirix MD Web Portal sends credential information without encryption, which could allow an attacker to steal credentials. https://t.co/ROlMVkCvVc
@CVEnew
8 May 2025
339 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes