Skip to content
Weitere InterSystems-Standorte:
Australia New Zealand
Australien & Neuseeland
Benelux
Benelux:
Benelux:
Brazil
Brasilien
Chile
Chile
China
China
Germany
Deutschland
Finland
Finnland
France
Frankreich
United Kingdom Ireland
Großbritannien & Irland
indonesian flag
Indonesien
Italy
Italien
Japan
Japan
Middle East Region
Mittlerer Osten
South Africa
Südafrika
Middle East Region
Südostasien
Sweden
Schweden
Spain
Spanien
Czech Republic
Tschechische Republik
Hungary
Ungarn
United States
Vereinigte Staaten von Amerika
Weitere InterSystems-Standorte:
Australia New Zealand
Australien & Neuseeland
Benelux
Benelux:
Benelux:
Brazil
Brasilien
Chile
Chile
China
China
Germany
Deutschland
Finland
Finnland
France
Frankreich
United Kingdom Ireland
Großbritannien & Irland
indonesian flag
Indonesien
Italy
Italien
Japan
Japan
Middle East Region
Mittlerer Osten
South Africa
Südafrika
Middle East Region
Südostasien
Sweden
Schweden
Spain
Spanien
Czech Republic
Tschechische Republik
Hungary
Ungarn
United States
Vereinigte Staaten von Amerika
Suchen Sie nach Produkten und Lösungen von InterSystems, Karrieremöglichkeiten und mehr.
Home
Product Alerts & Advisories
Advisory: Cross-site Scripting Issue in the Clinical Viewer

Advisory: Cross-site Scripting Issue in the Clinical Viewer

01 Mar 2022

March 1, 2022 – Advisory: Cross-site Scripting Issue in the Clinical Viewer

InterSystems has corrected a defect which could allow Cross-site scripting (XSS). A crafted payload within certain URI Parameters or HTTP POST Body can lead to arbitrary JavaScript execution in the Clinical Viewer in Health Share Information Exchange 2018.1 and Unified Care Record 2019.1.

The correction for this defect is identified as HSCV-8103/HSCV-8550. It is available via ad hoc change file or full kit distribution from the Worldwide Response Center (WRC). All affected customers are encouraged to request and apply the correction. The correction is included in version 2019.2 and all later product releases.
RELATED TOPICS
HealthShare

Latest Alerts & Advisories

20 May 2025
Product Alerts & Advisories
Advisory: XDS.b Document Repository Should Be Notify and Query
This issue affects all versions of HealthShare®:
More
20 May 2025
Product Alerts & Advisories
Advisory: Transform May Discard HL7 Medication Administration Instructions in FHIR Output
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: Session Timeout Ineffective for Navigation Application and Clinical Viewer
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: A Second Care Plan Using the Same Patient and Template Prevents Deletion of the Original Care Plan
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: Manual Step for ODS Mirror Upgrade
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: PIX Manager Process Causes Requests to Be Associated with Wrong User
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: Portal Login Failures with HealthShare Federated SSO
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: Error Handling for Patient Registry MPIID Mismatch
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: Upgrade Process May Be Delayed Due to OAuth2.0 Metadata Purge
This problem affects the following products:
More
20 May 2025
Product Alerts & Advisories
Advisory: HealthShare Service Registry Endpoints Calculated Incorrectly When Using Ports 443 or 80
This problem affects the following HealthShare® products:
More
View All Alerts & Advisories