Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unprotected FHIR API
Vulnerability Description
An unauthenticated attacker with access to the local network of the medical office can query an unprotected Fast Healthcare Interoperability Resources (FHIR) API to get access to sensitive electronic health records (EHR).
CVSS Information
N/A
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
HASOMED Elefant 安全漏洞
Vulnerability Description
HASOMED Elefant是德国HASOMED公司的一个练习软件。专门满足心理治疗师、儿童和青少年心理治疗师以及医学心理治疗师的需求。 HASOMED Elefant 24.04.00之前版本和Elefant Software Updater 1.4.2.1811之前版本存在安全漏洞,该漏洞源于API无认证保护且本地网络可被攻击者接入,从而会导致患者隐私泄露。
CVSS Information
N/A
Vulnerability Type
N/A