Skip to content
Jelajahi lebih banyak situs InterSystems:
South Africa
Afrika Selatan
United States
Amerika Serikat
Middle East Region
Asia Tenggara
Australia New Zealand
Australia & Selandia Baru
Benelux
Benelux:
Benelux:
Brazil
Brasil
Chile
Chile
China
China
Finland
Finlandia
Hungary
Hongaria
United Kingdom Ireland
Inggris Raya & Irlandia
indonesian flag
Indonesia
Italy
Italia
Japan
Jepang
Germany
Jerman
France
Prancis
Czech Republic
Republik Ceko
Spain
Spanyol
Sweden
Swedia
Middle East Region
Timur Tengah
Jelajahi lebih banyak situs InterSystems:
South Africa
Afrika Selatan
United States
Amerika Serikat
Middle East Region
Asia Tenggara
Australia New Zealand
Australia & Selandia Baru
Benelux
Benelux:
Benelux:
Brazil
Brasil
Chile
Chile
China
China
Finland
Finlandia
Hungary
Hongaria
United Kingdom Ireland
Inggris Raya & Irlandia
indonesian flag
Indonesia
Italy
Italia
Japan
Jepang
Germany
Jerman
France
Prancis
Czech Republic
Republik Ceko
Spain
Spanyol
Sweden
Swedia
Middle East Region
Timur Tengah
Telusuri untuk mempelajari tentang produk dan solusi InterSystems, peluang karier, dan banyak lagi.
Home
Peringatan & Saran Produk
Advisory: HealthShare URL Redirect Abuse

Advisory: HealthShare URL Redirect Abuse

26 Juni, 2023

This problem affects the following products:

  • HealthShare Unified Care Record: all version up to and including 2022.2

A single user interface page has been identified as a vector for URL redirect abuse in the HealthShare Unified Care Record versions listed. URL redirect abuse is associated with phishing scams and attempts to steal user credentials.

The CVSS 3.1 base score for this vulnerability has been calculated to be 5.4 with the following vector string:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

This has been corrected as of version 2023.1.

The correction for this defect is identified as HSIEO-6980, which will be included in all future product releases. It is also available via Ad hoc change file (patch) or full kit distribution by contacting the Worldwide Response Center (WRC).
RELATED TOPICS
HealthShare

Latest Alerts & Advisories

16 April, 2026
Peringatan & Saran Produk
Alert: Removal of InterSystems IRIS for Health and Health Connect 2024.1.4 and 2024.1.5 Due to Health Interoperability Issues
Advisory ID Product & Versions Affected Risk Category & Score Explicit Requirements IF-9262 InterSystems IRIS® for Health
buttonText
15 April, 2026
Peringatan & Saran Produk
Advisory: InterSystems IRIS for Health and InterSystems Health Connect 2026.1.0 FHIR Interfaces Broken When Using Non-Default Path Prefix
Advisory ID Product & Versions Affected Risk Category & Score Explicit Requirements IF-9396 InterSystems IRIS® for Health
buttonText
06 April, 2026
Peringatan & Saran Produk
Alert: HL7-to-SDA3 Transformation Issue Affecting Certain Medication-Related HL7 Messages
Product & Versions Affected Risk Category & Score Explicit Requirements HSIEC-12800 InterSystems IRIS® for Health
buttonText
26 Maret, 2026
Peringatan & Saran Produk
InterSystems Announces General Availability of InterSystems IRIS, InterSystems IRIS for Health, and HealthShare Health Connect 2026.1
The 2026.1 release of InterSystems IRIS® data platform, InterSystems IRIS® for HealthTM, and HealthShare® Health Connect is now Generally Available (GA). This is an Extended Maintenance (EM) release.
buttonText
18 Maret, 2026
Peringatan & Saran Produk
Alert: Journaling Potentially Disabled for System Work Queues
Product & Versions Affected Risk Category & Score Explicit Requirements DP-449126 InterSystems IRIS® data platform
buttonText
17 Maret, 2026
Peringatan & Saran Produk
Alert: System Hang with ≥ 2 TB Database Cache
Product & Versions Affected Risk Category & Score Explicit Requirements DP-448888 Products:
buttonText
27 Februari, 2026
Peringatan & Saran Produk
Advisory: HealthShare Provider Directory Global Occupies Large Amount of Storage
The problem affects the following versions of HealthShare Provider Directory:
buttonText
11 Februari, 2026
Peringatan & Saran Produk
Advisory: Custom Agreement Function Causes Error During Linkage Rebuild
This problem affects the following products:
buttonText
11 Februari, 2026
Peringatan & Saran Produk
Advisory: Deleted HealthShare Namespaces May Only Be Partially Removed from the Federation
This problem affects the following products:
buttonText
11 Februari, 2026
Peringatan & Saran Produk
Advisory: Consent Filtering Does Not Block Demographics from Appearing on a Clinician’s Recently Viewed Patient List
This problem affects the following products:
buttonText