Vulnerabilities (CVE)

Filtered by vendor Iris Subscribe

Filtered by product Star Practice Management

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-28406	1 Iris	1 Star Practice Management	2021-07-21	4.0 MEDIUM	6.5 MEDIUM
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access details about jobs he should not have access to via the Audit Trail Feature.
CVE-2020-28404	1 Iris	1 Star Practice Management	2021-07-21	4.0 MEDIUM	6.5 MEDIUM
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access the Billing page without the appropriate privileges.
CVE-2020-28401	1 Iris	1 Star Practice Management	2021-07-21	4.0 MEDIUM	6.5 MEDIUM
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access WIP details about jobs he should not have access to.