Skip to content
Effectuer une recherche pour en savoir plus sur les produits et solutions InterSystems, les offres d'emploi, etc.

Risk & Safety Alert HS2024-03: Multiple Alerts for InterSystems IRIS for Health, HealthShare Health Connect and HealthShare Solutions

There are four alerts in the HS2024-03 Alert Communication. A summary of each alert is shown below. Details for each alert are contained in the linked document.

Alert HS2024-03-01:

After Operating System Upgrade, HealthShare Instance May Require Upgrade

Products and Versions Affected

  • InterSystems IRIS® for Health 2021.2 and higher
  • HealthShare® Health Connect 2021.2 and higher
  • All HealthShare® Solutions products, version 2022.2 and higher:
    Care Community, Clinical Viewer, Health Insight, Healthcare Action Engine, Patient Index, Personal Community, Provider Directory, Unified Care Record

Requirements

  • Linux operating system
  • Operating system upgrade (major version)

Risk Category
Operational

Risk Score
4 – High Risk

Alert HS2024-03-02:

With FHIR Interoperability Productions, Bearer Token String Is Visible in Message Viewer and FSLOG

Products and Versions Affected

  • InterSystems IRIS for Health versions 2021.1 ̶ 2024.1

Requirements

  • FHIR repository
  • IRIS interoperability production-based FHIR endpoint

Risk Category
Security

Risk Score
3 – Medium Risk

Alert HS2024-03-03:

OnSystemStartup Methods not Run on Upgrade in Mirrored FHIR Systems

Products and Versions Affected

  • InterSystems IRIS for Health 2023.x
  • HealthShare Unified Care Record 2023.1 and 2023.2
    (Note: Previous guidance suggested that Unified Care Record version 2024.1 was affected, but it is not.)

Requirements

  • Mirroring
  • FHIR repository

Risk Category & Score
Operational

Risk Score
3 – Medium Risk

Alert HS2024-03-04:

Clinical Consent Policies not Properly Evaluated with Custom-named Streamlets

Products and Versions Affected

  • HealthShare Unified Care Record:
    All versions up-to-and-including 2024.1

Requirements

  • Clinical information type (CIT) consent policies
  • Custom SDA streamlets

Risk Category
Privacy

Risk Score
3 – Medium Risk

 

If you have any questions regarding this alert, please contact the Worldwide Response Center (WRC).

Latest Alerts & Advisories

07 Oct 2025
Risk Category & Score Explicit Requirements DP-442892 InterSystems IRIS® data platform InterSystems IRIS® for Health HealthShare® Health Connect versions 2023.3.0, 2024.1.0 – 2024.1.3, 2024.2.0, 2024.3.0, and 2025.1.0 HealthShare® Unified Care Record versions 2024.2 and 2025.1 Wrong Results: High Risk Specific use of OUTER JOIN when the inner leg has an index on the join fields In InterSystems IRIS versions 2023.3.0, 2024.1.0 – 2024.1.3, 2024.2.0, 2024.3.0, and 2025.1.0, for queries that use an OUTER JOIN and where InterSystems IRIS performs parallel execution, the query may silently return wrong results.
07 Oct 2025
Risk Category & Score Explicit Requirements DP-443396 InterSystems IRIS® data platform InterSystems IRIS® for Health HealthShare® Health Connect versions 2024.1.0 – 2024.1.4, 2024.2.0, 2024.3.0, and 2025.1.0, and 2025.1.1 HealthShare® Unified Care Record versions 2024.2 and 2025.1 Wrong Results: Low Risk Using Common Table Expressions in Dynamic SQL
07 Oct 2025
Risk Category & Score Explicit Requirements HSHC-5268 HealthShare® Health Connect and InterSystems IRIS® for Health versions 2025.1.1 Functional: Medium Risk Occurs when performing SDA3 -> FHIR transformations involving the Encounter resource.
30 Sep 2025
In InterSystems IRIS, InterSystems IRIS for Health, and HealthShare Health Connect, versions 2025.1.1 and 2025.2.0, the new “ Mirror Database Download” functionality does not include certain globals.
24 Sep 2025
Risk Category & Score Explicit Requirements DP-444551 InterSystems IRIS® data platform InterSystems IRIS® for Health HealthShare® Health Connect versions 2025.1.0, 2025.1.1, and 2025.2
03 Sep 2025
Risk Category & Score Explicit Requirements DP-442440 InterSystems IRIS ® data platform 2025.1.1.308.0 InterSystems IRIS for Health HealthShare® Health Connect Operational:
23 Jul 2025
InterSystems IRIS 2025.2 introduces the IRISSECURITY database, the new home for security data. Unlike IRISSYS, the previous home for security data, IRISSECURITY can be encrypted, which secures your sensitive data at rest. In a future version, IRISSECURITY will be mirrorable.
23 Jul 2025
InterSystems is pleased to announce the General Availability (GA) of the 2025.2 release of InterSystems IRIS® data platform. This is a Continuous Delivery (CD) release. Please note that the GA versions of InterSystems IRIS for Health™ and HealthShare® Health Connect™ 2025.2 are currently withheld due to mirroring limitations introduced by security updates (details below).
10 Jun 2025
Advisory ID Product & Versions Affected Risk Category & Score Explicit Requirements DP-439649 Products:
20 May 2025
This issue affects all versions of HealthShare®: