CVE-2024-50589

Missing Authentication for Critical Function (CWE-306)

Published: Nov 8, 2024 / Updated: 11d ago

010
CVSS 7.5EPSS 0.04%High
CVE info copied to clipboard

An unauthenticated attacker with access to the local network of the medical office can query an unprotected Fast Healthcare Interoperability Resources (FHIR) API to get access to sensitive electronic health records (EHR).

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Timeline

CVE Assignment

NVD published the first details for CVE-2024-50589

Nov 8, 2024 at 12:15 PM
First Article

Feedly found the first article mentioning CVE-2024-50589. See article

Nov 8, 2024 at 12:21 PM / Vulners.com RSS Feed
CVSS Estimate

Feedly estimated the CVSS score as MEDIUM

Nov 8, 2024 at 12:21 PM
CVSS

A CVSS base score of 7.5 has been assigned.

Nov 8, 2024 at 4:40 PM / nvd
EPSS

EPSS Score was set to: 0.04% (Percentile: 10%)

Nov 9, 2024 at 9:56 AM
Static CVE Timeline Graph

Affected Systems

Fhir
+null more

Attack Patterns

CAPEC-12: Choosing Message Identifier
+null more

News

HASOMED Elefant / Elefant Software Updater Data Exposure / Privilege Escalation
Authored by Daniel Hirschberger , Florian Stuhlmann Site sec-consult.com HASOMED Elefant versions prior to 24.04.00 and Elefant Software Updater versions prior to 1.4.2.1811 suffer from having an unprotected exposed firebird database, unprotected FHIR API, multiple local privilege escalation, and hardcoded service password vulnerabilities. advisories CVE-2024-50588, CVE-2024-50589, CVE-2024-50590, CVE-2024-50591, CVE-2024-50592, CVE-2024-50593
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
4) Local Privilege Escalation via Command Injection (CVE-2024-50591) An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. 5) Local Privilege Escalation via Race Condition (CVE-2024-50592) An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a race condition in the Elefant Update Service during the repair or update process.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
4) Local Privilege Escalation via Command Injection (CVE-2024-50591) An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. 5) Local Privilege Escalation via Race Condition (CVE-2024-50592) An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a race condition in the Elefant Update Service during the repair or update process.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Nov 09 SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities product: HASOMED Elefant and Elefant Software Updater vulnerable version: fixed version: 24.04.00, Elefant Software Updater 1.4.2.1811 CVE number: CVE-2024-50588,...
CVE Alert: CVE-2024-50589
Everyone that supports the site helps enable new functionality. Affected Endpoints:
See 9 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:Low
Privileges Required:None
User Interaction:None
Scope:Unchanged
Confidentiality:High
Integrity:None
Availability Impact:None

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI