Pixmeo OsiriX MD Web Portal Unencrypted Credential Transmission Vulnerability

Vulnerability

A vulnerability exists in the Pixmeo OsiriX MD Web Portal, where credential information is sent without encryption. This lack of encryption could enable an attacker to intercept and steal user credentials. OsiriX MD is a medical imaging software certified for clinical use, and this vulnerability raises concerns about the security of sensitive user information.

Impact

Exploitation of this vulnerability could lead to unauthorized interception and theft of user credentials.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Pixmeo OsiriX MD Web Portal Unencrypted Credential Transmission Vulnerability

Vulnerability

Impact

Affected Products

Pixmeo OsiriX MD

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating