What the vulnerability does

01Description

Open Dental before version 18.4 installs a mysql database and uses the default credentials of "root" with a blank password. This allows anyone on the network with access to the server to access all database information.

Key dates

02Disclosure timeline

December 12, 2018 CVE published
September 16, 2024 Record updated