CVE-2014-0348

Artiva Workstation <1.3.9 - Auth Bypass

Title source: llm

Description

The Artiva Agency Single Sign-On (SSO) implementation in Artiva Workstation 1.3.x before 1.3.9, Artiva Rm 3.1 MR7, Artiva Healthcare 5.2 MR5, and Artiva Architect 3.2 MR5, when the domain-name option is enabled, allows remote attackers to login to arbitrary domain accounts by using the corresponding username on a Windows client machine.

References (1)

[US Government Resource] http://www.kb.cert.org/vuls/id/215284

Scores

EPSS 0.0031

EPSS Percentile 53.8%

Classification

CWE

CWE-287

Status draft

Affected Products (4)

ontariosystems/artiva_architect

ontariosystems/artiva_healthcare

ontariosystems/artiva_rm

ontariosystems/artiva_workstation

Timeline

Published Apr 15, 2014

Tracked Since Feb 18, 2026