Every CVE whose affected-product data names Cgm Clininet, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2025-30042 — CVSS 7.8 (high): The CGM CLININET system provides smart card authentication; however, authentication is conducted locally on the client device, and, in…
CVE-2025-58402 — CVSS 7.5 (high): The CGM CLININET application uses direct, sequential object identifiers "MessageID" without proper authorization checks. By modifying the…
CVE-2025-58405 — CVSS 6.1 (medium): The CGM CLININET application does not implement any mechanisms that prevent clickjacking attacks, neither HTTP security headers nor…
CVE-2025-58406 — CVSS 4.3 (medium): The CGM CLININET application respond without essential security HTTP headers, exposing users to client‑side attacks such as clickjacking…