QwikSec

Security Database

CVE

CWE

Training

CVE-2024-3699

Published: Jun 10, 2024

Modified: Oct 3, 2025

PUBLISHED

Description

Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database. The password is the same among all drEryk Gabinet installations.This issue affects drEryk Gabinet software versions from 7.0.0.0 through 9.17.0.0.

Vendor	Product	Versions
drEryk sp. z o.o.	drEryk Gabinet	affected `7.0.0.0 - <= 9.17.0.0.`

Weaknesses (CWE)

References

https://cert.pl/en/posts/2024/06/CVE-2024-1228/

third-party-advisory

https://cert.pl/posts/2024/06/CVE-2024-1228/

third-party-advisory

https://dreryk.pl/produkty/gabinet/

product

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.