Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| CGM | CGM CLININET | unaffected |
|
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Cgm | Cgm Clininet | 100% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 09 Mar 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Cgm clininet
|
|
| CPEs | cpe:2.3:a:cgm:clininet:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Cgm clininet
|
|
| Metrics |
cvssV3_1
|
Wed, 04 Mar 2026 11:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Cgm
Cgm cgm Clininet |
|
| Vendors & Products |
Cgm
Cgm cgm Clininet |
Mon, 02 Mar 2026 13:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 02 Mar 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | The CGM CLININET application respond without essential security HTTP headers, exposing users to client‑side attacks such as clickjacking, MIME sniffing, unsafe caching, weak cross‑origin isolation, and missing transport security controls. | |
| Title | Lack of HTTP Response Headers | |
| Weaknesses | CWE-693 | |
| References |
| |
| Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: CERT-PL
Published:
Updated: 2026-03-02T12:21:46.406Z
Reserved: 2025-09-01T07:18:45.944Z
Link: CVE-2025-58406
Vulnrichment
Updated: 2026-03-02T12:21:38.006Z
NVD
Status : Analyzed
Published: 2026-03-02T12:16:01.923
Modified: 2026-03-09T15:11:00.580
Link: CVE-2025-58406
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-03-03T08:45:19Z