Primary

Context

PicoTronica e-Clinic Healthcare System Information Disclosure Vulnerability in Response Header Handler

Vulnerability

A vulnerability allowing information disclosure has been identified in PicoTronica e-Clinic Healthcare System (ECHS) version 5.7. The issue arises in an unknown function within the Response Header Handler component, specifically in the file '/cdemos/echs/api/v2/'. This vulnerability can be exploited remotely, and the details of the exploit have been made public.

Impact

Exploitation of this vulnerability leads to unauthorized information disclosure via response headers and detailed authentication error messages.

Remediation

Upgrading to version 5.7.1 addresses this vulnerability. Users are advised to update to the latest version.

Added: May 6, 2026, 9:01 PM

Updated: May 6, 2026, 9:01 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

7.6

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

7.6

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PicoTronica e-Clinic Healthcare System Information Disclosure Vulnerability in Response Header Handler

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating