CVE-2014-5452 in C-CDAinfo

Zusammenfassung (Englisch)

CDA.xsl in HL7 C-CDA 1.1 and earlier does not anticipate the possibility of invalid C-CDA documents with crafted XML attributes, which allows remote attackers to conduct XSS attacks via a document containing a table that is improperly handled during unrestricted xsl:copy operations.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservieren

25.08.2014

Veröffentlichung

02.09.2014

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
70789	HL7 C-CDA Cross Site Scripting	79	Nicht definiert	Nicht definiert	CVE-2014-5452

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!