Carestream Clinical Collaboration Platform Session Management Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A vulnerability in Carestream Clinical Collaboration Platform version 12.2.1.5 has been identified, allowing remote attackers to access sensitive information and execute arbitrary code. This issue arises within the session management component of the application.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information and the execution of arbitrary code on the affected system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Carestream Clinical Collaboration Platform Session Management Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating