Primary

Context

EBM Technologies Uniweb/SoliPACS WebServer Missing Authentication Vulnerability

Vulnerability

A missing authentication vulnerability has been identified in Uniweb/SoliPACS WebServer developed by EBM Technologies, specifically in versions through 12.1.2577. This vulnerability allows unauthenticated remote attackers to access certain pages and retrieve user group names, as well as account names and IP addresses, depending on the specific CVE reference.

Impact

Exploitation of this vulnerability could lead to unauthorized access to user group names, and in the case of CVE-2025-11671, also account names and IP addresses.

Remediation

Users are advised to update to a version later than 12.1.2577.

Added: Oct 13, 2025, 8:17 AM

Updated: Oct 13, 2025, 8:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

EBM Technologies Uniweb/SoliPACS WebServer Missing Authentication Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating