Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-6951

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00608EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 10:12 p.m.16 views

CVE-2022-39230

fhir-works-on-aws-authz-smart is an implementation of the authorization interface from the FHIR Works interface. Versions 3.1.1 and 3.1.2 are subject to Exposure of Sensitive Information to an Unauthorized Actor. This issue allows a client of the API to retrieve more information than the client’s...

6.5CVSS6.5AI score0.00608EPSS
Exploits0References1
Veracode
Veracode
added 2022/09/28 3:45 a.m.17 views

Information Disclosure

fhir-works-on-aws-authz-smart is vulnerable to information disclosure.The vulnerability exits in getValidOperationsForScope function in smartScopeHelper.ts due to improper authorization which allows an attacker to gain access to information in the file system via search-type requests...

6.5CVSS6.4AI score0.00608EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/09/23 7:15 a.m.21 views

CVE-2022-39230

fhir-works-on-aws-authz-smart is an implementation of the authorization interface from the FHIR Works interface. Versions 3.1.1 and 3.1.2 are subject to Exposure of Sensitive Information to an Unauthorized Actor. This issue allows a client of the API to retrieve more information than the client’s...

6.5CVSS0.00608EPSS
Exploits0References1
Prion
Prion
added 2022/09/23 7:15 a.m.22 views

Authorization

fhir-works-on-aws-authz-smart is an implementation of the authorization interface from the FHIR Works interface. Versions 3.1.1 and 3.1.2 are subject to Exposure of Sensitive Information to an Unauthorized Actor. This issue allows a client of the API to retrieve more information than the client’s...

4CVSS6.3AI score0.00608EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/09/23 7:10 a.m.27 views

CVE-2022-39230 Security issue in fhir-works-on-aws-authz-smart

fhir-works-on-aws-authz-smart is an implementation of the authorization interface from the FHIR Works interface. Versions 3.1.1 and 3.1.2 are subject to Exposure of Sensitive Information to an Unauthorized Actor. This issue allows a client of the API to retrieve more information than the client’s...

6.5CVSS6.6AI score0.00608EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/23 7:10 a.m.6 views

CVE-2022-39230 Security issue in fhir-works-on-aws-authz-smart

fhir-works-on-aws-authz-smart is an implementation of the authorization interface from the FHIR Works interface. Versions 3.1.1 and 3.1.2 are subject to Exposure of Sensitive Information to an Unauthorized Actor. This issue allows a client of the API to retrieve more information than the client’s...

6.5CVSS6.4AI score0.00608EPSS
Exploits0References1
CVE
CVE
added 2022/09/23 7:10 a.m.331 views

CVE-2022-39230

CVE-2022-39230 affects fhir-works-on-aws-authz-smart. Versions 3.1.1 and 3.1.2 are subject to Exposure of Sensitive Information to an Unauthorized Actor, allowing a client to retrieve more information than its OAuth scope permits on search-type requests. The issue originates in how authorization ...

6.5CVSS6.3AI score0.00608EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/09/23 7:10 a.m.24 views

CVE-2022-39230 Security issue in fhir-works-on-aws-authz-smart

fhir-works-on-aws-authz-smart is an implementation of the authorization interface from the FHIR Works interface. Versions 3.1.1 and 3.1.2 are subject to Exposure of Sensitive Information to an Unauthorized Actor. This issue allows a client of the API to retrieve more information than the client’s...

6.5CVSS6.2AI score0.00608EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/09/23 12:0 a.m.6 views

fhir-works-on-aws-authz-smart 信息泄露漏洞

fhir-works-on-aws-authz-smart is a SMART implementation on FHIR v1.0.0 of the FHIR Works on AWS framework open-sourced by Amazon Web Services Labs. Designed to leverage the OAuth2/OIDC authorization server to authorize requests. An information disclosure vulnerability exists in...

6.5CVSS6.4AI score0.00608EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/09/21 12:0 a.m.8 views

PT-2022-24826 · Unknown · Fhir-Works-On-Aws-Authz-Smart

Name of the Vulnerable Software and Affected Versions: fhir-works-on-aws-authz-smart versions 3.1.1 through 3.1.2 Description: The issue allows a client of the API to retrieve more information than the client's OAuth scope permits when making "search-type" requests. However, this issue would not...

6.5CVSS6.3AI score0.00608EPSS
Exploits0References7
Rows per page
Query Builder