CVE-2026-14162

CRITICAL

Advantech|Hospital Quering Management - Missing Authentication

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-14162. PoCs published by HermesNA-1.

AI-analyzed exploit summary This repository contains an auto-generated stub module for CVE-2026-14162, a sensitive data exposure vulnerability in Advantech's Hospital Queuing Management software. The code includes placeholder logic for checking target connectivity but lacks actual exploit implementation for accessing the exposed API documentation.

Description

Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access a specific URL to obtain API documentation.

Exploits (1)

github STUB 1 stars
by HermesNA-1 · pythonpoc
https://github.com/HermesNA-1/SnakeSploit/tree/main/data/modules_generated/cve-2026-14162_hospital_queuing_management.py

This repository contains an auto-generated stub module for CVE-2026-14162, a sensitive data exposure vulnerability in Advantech's Hospital Queuing Management software. The code includes placeholder logic for checking target connectivity but lacks actual exploit implementation for accessing the exposed API documentation.

Classification
Stub 99%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Theoretical
Target: Hospital Queuing Management developed by Advantech
No auth needed
Prerequisites: Network access to the target system on the specified port (default: 80/443)
mistral-large-3 · analyzed Jul 09, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory third-party-advisory
https://www.twcert.org.tw/tw/cp-132-11011-999eb-1.html
Third Party Advisory third-party-advisory
https://www.twcert.org.tw/en/cp-139-11012-63761-2.html

Scores

CVSS v3 9.8
EPSS 0.0047
EPSS Percentile 37.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-306
Status published
Products (1)
Advantech/Hospital Quering Management < 1.2.13
Published Jun 30, 2026
Tracked Since Jun 30, 2026