Skip to content
Explore more InterSystems sites:
Australia New Zealand
Australia & New Zealand
Benelux
Benelux:
Benelux:
Brazil
Brazil
Chile
Chile
China
China
Czech Republic
Czech Republic
Finland
Finland
France
France
Germany
Germany
Hungary
Hungary
Italy
Italy
Japan
Japan
Kazakhstan
Kazakhstan
Middle East Region
Middle East
Russia
Russia
South Africa
South Africa
Middle East Region
Southeast Asia
Spain
Spain
Sweden
Sweden
Ukraine
Ukraine
United Kingdom Ireland
United Kingdom & Ireland
United States
United States
Explore more InterSystems sites:
Australia New Zealand
Australia & New Zealand
Benelux
Benelux:
Benelux:
Brazil
Brazil
Chile
Chile
China
China
Czech Republic
Czech Republic
Finland
Finland
France
France
Germany
Germany
Hungary
Hungary
Italy
Italy
Japan
Japan
Kazakhstan
Kazakhstan
Middle East Region
Middle East
Russia
Russia
South Africa
South Africa
Middle East Region
Southeast Asia
Spain
Spain
Sweden
Sweden
Ukraine
Ukraine
United Kingdom Ireland
United Kingdom & Ireland
United States
United States
Search to learn about InterSystems products and solutions, career opportunities, and more.
Home
Product Alerts & Advisories
Advisory: Apache Web Server provided with InterSystems kits – Vulnerability reports

Advisory: Apache Web Server provided with InterSystems kits – Vulnerability reports

Nov 19, 2021

November 19, 2021 - Advisory: Apache Web Server provided with InterSystems kits – Vulnerability reports

InterSystems kits include an Apache web server, which provides a convenient way for customers to interact with the Caché/IRIS Management Portal without needing to install an external web server; however, this web server should never be used for production instances, and customers must install a web server that fits their specific needs and security/risk requirements.

Recent tests have noted some security issues with the currently included Apache web server. Because this is a third-party technology that InterSystems does not control, InterSystems recommends installing a web server version directly obtained from Apache or another third party and disabling the included Apache web server. Our product documentation includes instructions on how to disable the web server provided with our kits. In addition, Apache also offers uninstall instructions that can be found on the Apache website.

InterSystems plans to include a more recent version of the Apache web server in upcoming releases. Similar to the current version, this version also cannot be used for production instances. In future releases of our products, InterSystems will not ship or install any web server; we will provide further updates with the specifics of our plans.

RELATED TOPICS
Caché Ensemble HealthShare InterSystems IRIS InterSystems IRIS for Health

Latest Alerts & Advisories

Apr 08, 2024
Product Alerts & Advisories
Alert: Upgrades fail for HealthShare Health Connect instances not licensed for HL7® FHIR®
InterSystems has encountered a defect that causes some upgrades of HealthShare® Health Connect to fail. This only affects instances that are not licensed for the use of FHIR® and that have interoperability-enabled namespaces. Under these conditions, the upgrade fails with an error.
Mar 19, 2024
Product Alerts & Advisories
Advisory: AIX Memory Leak
In evaluating an IBM Support notification, InterSystems has determined a potential impact for our customers. The notification in question is:
Feb 27, 2024
Product Alerts & Advisories
Alert HS2024-limited: InterSystems IRIS for Health, Health Connect & HealthShare Solution Alert for Customers who Received an Ad Hoc Correction for HSIEO-8613
There is 1 alert in the HealthShare HS2024-limited Alert communication. An alert summary for the issue is shown is in the table below. Details for the alert are contained in the attached document: HS2024 Limited Communication.
Feb 01, 2024
Product Alerts & Advisories
Alert HS2024-02: Multiple InterSystems IRIS for Health, Health Connect & HealthShare Solution Alerts
There are 2 alerts in the HealthShare HS2024-02 Alert communication. An alert summary for each issue is shown is in the table below. Details for each alert are contained in the attached document: HS2024-02-Communication.
Jan 17, 2024
Product Alerts & Advisories
Advisory: System Downtime Due to HealthShare Mirror Monitor Agent Configuration Step Duplication
This problem affects the following products:
Jan 17, 2024
Product Alerts & Advisories
Advisory: Patients Cannot See Updates to a Care Plan That They Have Been Asked to Review/Contribute To
This problem affects the following products:
Jan 17, 2024
Product Alerts & Advisories
Advisory: Clinical Viewer Namespace Activation Fails after Upgrade with "%pkg.isc" Errors
This problem affects the following products:
Jan 17, 2024
Product Alerts & Advisories
Advisory: Override Data Restrictions Entries not in Audit Log
This problem affects the following products:
Jan 17, 2024
Product Alerts & Advisories
Advisory: Deleting MedicationAdministration Entries Causes Slow Performance Due to Table Scans
This problem affects the following products:
Jan 17, 2024
Product Alerts & Advisories
Advisory: Users Unable to Log in After Upgrade Due to Missing Index
This problem affects the following products:
View All Alerts & Advisories

Sign Up Today

Receive notifications on support alerts, critical issues,
fixes, and product releases.
*Required Fields
Highlighted fields are required
*Required Fields
Highlighted fields are required
By submitting this form, you give consent to receive notifications concerning support alerts, critical issues, important updates, fixes, and product releases via email. In addition, you consent to your business contact information being entered into our CRM solution that is hosted in the United States, but maintained consistent with applicable data protection laws.
**By clicking here, you give consent to be contacted for news, updates and other marketing purposes related to existing and future InterSystems products, offerings, and events.