Tenable Research has discovered three vulnerabilities in the LabKey Server, an open source medical data collaboration tool, which potentially could put medical research data at risk of unauthorized access.
The flaws are found in the LabKey Server Community Edition 18.2-60106.64. These serious system vulnerabilities could allow a hacker to obtain user credentials when a user clicks a malicious link.
LabKey released patches for each of these vulnerabilities on January 16 that corrects these flaws.