Skip to content
Sélectionnez votre pays :
South Africa
Afrique du Sud
Germany
Allemagne
Middle East Region
Asie du Sud-Est
Australia New Zealand
Australie & Nouvelle-Zélande
Benelux
Benelux :
Benelux :
Brazil
Brésil
Chile
Chili
China
Chine
Spain
Espagne
United States
États-Unis
Finland
Finlande
France
France
Hungary
Hongrie
indonesian flag
Indonésie
Italy
Italie
Japan
Japon
Middle East Region
Moyen-Orient
Czech Republic
République Tchèque
United Kingdom Ireland
Royaume-Uni & Irelande
Sweden
Suède
Sélectionnez votre pays :
South Africa
Afrique du Sud
Germany
Allemagne
Middle East Region
Asie du Sud-Est
Australia New Zealand
Australie & Nouvelle-Zélande
Benelux
Benelux :
Benelux :
Brazil
Brésil
Chile
Chili
China
Chine
Spain
Espagne
United States
États-Unis
Finland
Finlande
France
France
Hungary
Hongrie
indonesian flag
Indonésie
Italy
Italie
Japan
Japon
Middle East Region
Moyen-Orient
Czech Republic
République Tchèque
United Kingdom Ireland
Royaume-Uni & Irelande
Sweden
Suède
Effectuer une recherche pour en savoir plus sur les produits et solutions InterSystems, les offres d'emploi, etc.
Home
Product Alerts & Advisories
Advisory: Cross-site Scripting Issue in the Clinical Viewer

Advisory: Cross-site Scripting Issue in the Clinical Viewer

01 Mar 2022

March 1, 2022 – Advisory: Cross-site Scripting Issue in the Clinical Viewer

InterSystems has corrected a defect which could allow Cross-site scripting (XSS). A crafted payload within certain URI Parameters or HTTP POST Body can lead to arbitrary JavaScript execution in the Clinical Viewer in Health Share Information Exchange 2018.1 and Unified Care Record 2019.1.

The correction for this defect is identified as HSCV-8103/HSCV-8550. It is available via ad hoc change file or full kit distribution from the Worldwide Response Center (WRC). All affected customers are encouraged to request and apply the correction. The correction is included in version 2019.2 and all later product releases.
RELATED TOPICS
HealthShare

Latest Alerts & Advisories

15 Apr 2026
Product Alerts & Advisories
Alert: Removal of InterSystems IRIS for Health and Health Connect 2024.1.4 and 2024.1.5 Due to Health Interoperability Issues
Advisory ID Product & Versions Affected Risk Category & Score Explicit Requirements IF-9262 InterSystems IRIS® for Health
More
14 Apr 2026
Product Alerts & Advisories
Advisory: InterSystems IRIS for Health and InterSystems Health Connect 2026.1.0 FHIR Interfaces Broken When Using Non-Default Path Prefix
Advisory ID Product & Versions Affected Risk Category & Score Explicit Requirements IF-9396 InterSystems IRIS® for Health
More
06 Apr 2026
Product Alerts & Advisories
Alert: HL7-to-SDA3 Transformation Issue Affecting Certain Medication-Related HL7 Messages
Product & Versions Affected Risk Category & Score Explicit Requirements HSIEC-12800 InterSystems IRIS® for Health
More
25 Mar 2026
Product Alerts & Advisories
InterSystems Announces General Availability of InterSystems IRIS, InterSystems IRIS for Health, and HealthShare Health Connect 2026.1
The 2026.1 release of InterSystems IRIS® data platform, InterSystems IRIS® for HealthTM, and HealthShare® Health Connect is now Generally Available (GA). This is an Extended Maintenance (EM) release.
More
18 Mar 2026
Product Alerts & Advisories
Alert: Journaling Potentially Disabled for System Work Queues
Product & Versions Affected Risk Category & Score Explicit Requirements DP-449126 InterSystems IRIS® data platform
More
17 Mar 2026
Product Alerts & Advisories
Alert: System Hang with ≥ 2 TB Database Cache
Product & Versions Affected Risk Category & Score Explicit Requirements DP-448888 Products:
More
26 Feb 2026
Product Alerts & Advisories
Advisory: HealthShare Provider Directory Global Occupies Large Amount of Storage
The problem affects the following versions of HealthShare Provider Directory:
More
10 Feb 2026
Product Alerts & Advisories
Advisory: Custom Agreement Function Causes Error During Linkage Rebuild
This problem affects the following products:
More
10 Feb 2026
Product Alerts & Advisories
Advisory: Deleted HealthShare Namespaces May Only Be Partially Removed from the Federation
This problem affects the following products:
More
10 Feb 2026
Product Alerts & Advisories
Advisory: Consent Filtering Does Not Block Demographics from Appearing on a Clinician’s Recently Viewed Patient List
This problem affects the following products:
More
View All Alerts & Advisories