CVE-2024-12917

HIGH 8.3

Improper Access Control in Agito Computer's Health4All

CVSS Score

8.3

EPSS Score

0.2%

EPSS Percentile

36th

Files or Directories Accessible to External Parties vulnerability in Agito Computer Health4All allows Exploiting Incorrectly Configured Access Control Security Levels, Authentication Abuse. This issue affects Health4All: before 10.01.2025.

CWE	CWE-552
Vendor	agito computer
Product	health4all
Published	Feb 24, 2025
Last Updated	Jun 1, 2026

Stay Ahead of the Next One

Get instant alerts for agito computer health4all

Be the first to know when new high vulnerabilities affecting agito computer health4all are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

Low

Affected Versions

Agito Computer / Health4All

0 < 10.01.2025

References

NVD ↗ CVE.org ↗ EPSS Data ↗

usom.gov.tr: https://www.usom.gov.tr/bildirim/tr-25-0042 siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0042

Credits

Kaan ATMACA Secure Future Inc.