Skip to main content

Hl7 Fhir Core

2 CVEs product

Monthly

CVE-2023-28465 Maven HIGH PATCH This Week

The package-decompression feature in HL7 (Health Level 7) FHIR Core Libraries before 5.6.106 allows attackers to copy arbitrary files to certain directories via directory traversal, if an allowed. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Hl7 Fhir Core
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2023-24057 Maven HIGH POC PATCH This Week

HL7 (Health Level 7) FHIR Core Libraries before 5.6.92 allow attackers to extract files into arbitrary directories via directory traversal from a crafted ZIP or TGZ archive (for a prepackaged. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Node.js Path Traversal Hl7 Fhir Core Fhir Ig Publisher
NVD GitHub
CVSS 3.1
8.1
EPSS
1.2%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

The package-decompression feature in HL7 (Health Level 7) FHIR Core Libraries before 5.6.106 allows attackers to copy arbitrary files to certain directories via directory traversal, if an allowed. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Hl7 Fhir Core
NVD GitHub
EPSS 1% CVSS 8.1
HIGH POC PATCH This Week

HL7 (Health Level 7) FHIR Core Libraries before 5.6.92 allow attackers to extract files into arbitrary directories via directory traversal from a crafted ZIP or TGZ archive (for a prepackaged. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Node.js Path Traversal Hl7 Fhir Core +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy