Sensitive Data Exposure in Hospital Queuing Management by Advantech
CVE-2026-14162

9.3CRITICAL

Key Information:

Vendor: Advantech
Status: Hospital Quering Management
Vendor: CVE Published:; 30 June 2026

What is CVE-2026-14162?

The Hospital Queuing Management software developed by Advantech is exposed to a vulnerability that allows unauthenticated remote attackers to access sensitive API documentation via a specific URL. This exposure raises significant security concerns, as it may lead to unauthorized retrieval of critical information, potentially impacting patient data privacy and system integrity.

Affected Version(s)

Hospital Quering Management 0 < 1.2.13

References

https://www.twcert.org.tw/tw/cp-132-11011-999eb-1.html

third-party-advisory

https://www.twcert.org.tw/en/cp-139-11012-63761-2.html

third-party-advisory

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2026
Vulnerability Reserved
Jun 30, 2026

CVE-2026-14162 Data

JSON