CVE Catalog

CVE-2026-39513

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.29%

20th percentile - higher than 20% of all known CVEs

Summary

Versions of Easy Appointments up to 3.12.21 have an unauthenticated broken access control vulnerability that may allow attackers to access resources they should not have access to.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to loss of confidentiality and integrity of information.

Recommendation

It is recommended to upgrade to the latest version of Easy Appointments to mitigate this security vulnerability.

Original NVD description (English source)

Unauthenticated Broken Access Control in Easy Appointments <= 3.12.21 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS