11 matches found
HAPI FHIR 安全漏洞
HAPI FHIR is an open-source Java-based HL7 FHIR API developed by HAPI FHIR. Versions of HAPI FHIR prior to 6.9.4 contained security vulnerabilities. These vulnerabilities stemmed from the FHIR Validator HTTP service exposing unauthenticated /loadIG endpoints, and the credential provider had a fla...
CVE-2025-24363
The HL7 FHIR IG publisher is a tool to take a set of inputs and create a standard FHIR IG. Prior to version 1.8.9, in CI contexts, the IG Publisher CLI uses git commands to determine the URL of the originating repo. If the repo was cloned, or otherwise set to use a repo that uses a username and...
GHSA-6729-95V3-PJC2 HL7 FHIR IG Publisher potentially exposes GitHub repo user and credential information
Impact In CI contexts, the IG Publisher CLI uses git commands to determine the URL of the originating repo. If the repo was cloned, or otherwise set to use a repo that uses a username and credential based URL, the entire URL will be included in the built Implementation Guide, exposing username an...
CVE-2025-24363 The HL7 FHIR IG publisher may potentially expose GitHub repo user and credential information
The HL7 FHIR IG publisher is a tool to take a set of inputs and create a standard FHIR IG. Prior to version 1.8.9, in CI contexts, the IG Publisher CLI uses git commands to determine the URL of the originating repo. If the repo was cloned, or otherwise set to use a repo that uses a username and...
CVE-2025-24363
CVE-2025-24363 affects the HL7 FHIR IG Publisher. In versions prior to 1.8.9, the CLI in CI contexts uses git to derive the origin URL; if the repo URL includes a username/password/token, that credentialed URL can be embedded in the generated Implementation Guide, exposing credentials. Impact is ...
CVE-2025-24363 The HL7 FHIR IG publisher may potentially expose GitHub repo user and credential information
The HL7 FHIR IG publisher is a tool to take a set of inputs and create a standard FHIR IG. Prior to version 1.8.9, in CI contexts, the IG Publisher CLI uses git commands to determine the URL of the originating repo. If the repo was cloned, or otherwise set to use a repo that uses a username and...
HL7 FHIR IG Publisher Artifacts 信息泄露漏洞
HL7 FHIR IG Publisher Artifacts is an open source tool used by Health Level Seven International to obtain a set of inputs. An information disclosure vulnerability previously existed in HL7 FHIR IG Publisher Artifacts version 1.8.9, which stemmed from the fact that if the repository had been clone...
CGA-P35F-QV46-7JWR
Bulletin has no description...
HL7 FHIR IG Publisher Artifacts 安全漏洞
HL7 FHIR IG Publisher Artifacts is an open source tool from Health Level Seven International for obtaining a set of inputs. A security vulnerability exists in HL7 FHIR IG Publisher Artifacts versions prior to 6.3.23, which stems from vulnerability to an XML external entity injection attack, where...
How to Change Write Cache Disk Letter
In particular scenario, write cache disk letter need to be other letter rather than 'D'. This article descirbes how to implement this request...
Local Administrator Password Solution (LAPS) 導入ガイド (日本語版)
Active Directory 管理者のみなさん、Local Administrator Password Solution LAPS ツールはご存じですか? LAPS ツールは、Active Directory AD に参加して...