VDB
CVE-2025-3981
CVE-2025-3981
PUBLISHED
CVSS 5.300000190734863 MEDIUM
A vulnerability, which was classified as problematic, has been found in wowjoy 浙江湖州华卓信息科技有限公司 Internet Doctor Workstation System 1.0. This issue affects some unknown processing of the file /v1/prescription/details/. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
EPSS 0.19% · 41.4th percentile
Risk Scores
CVSS 4.0
5.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
EPSS Score
0.19%
41.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| wowjoy | internet_doctor_workstation_system | 1.0 |
| wowjoy 浙江湖州华卓信息科技有限公司 | Internet Doctor Workstation System | 1.0 |
Exploit Intelligence
- CIRCL seen: CVE-2025-3981 (circl-sighting)
- CIRCL seen: CVE-2025-3981 (circl-sighting)
- VDB-306317 | wowjoy 浙江湖州华卓信息科技有限公司 Internet Doctor Workstation System details improper authorization (circl)
- VDB-306317 | CTI Indicators (IOB, IOC, TTP, IOA) (circl)
- https://github.com/38279/3/issues/1 (cve.org)
Timeline
- Apr 27, 2025 CVE Published
- Apr 27, 2025 PoC Published
- Apr 27, 2025 PoC Published
- Apr 28, 2025 EPSS Score
- May 10, 2025 EPSS Score
- May 12, 2025 CVE Updated
- May 22, 2025 EPSS Score
- Jun 3, 2025 EPSS Score
- Jun 6, 2025 Coalition ESS Score
- Jun 9, 2025 Coalition ESS Score
- Jun 15, 2025 EPSS Score
- Jun 27, 2025 EPSS Score