MEDIUM
Medical Management System
CVE published 2026-05-15
CVE-2025-67437
CVE-2025-67437 documents an insecure permissions vulnerability in Medical Management System commit a81df1ce700a9662cb136b27af47f4cbde64156b that enables arbitrary user password reset. The vulnerability was published to the CVE List on 15 May 2026 and last modified on 18 May 2026. NVD currently lists the vulnerability status as Deferred. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N) yields a ba [truncated]