CVE-2024-52007

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Nov 8, 2024
Updated: Nov 12, 2024
CWE ID 611

Summary

CVE-2024-52007 is a vulnerability affecting HAPI FHIR, a Java implementation of the Health Level Seven (HL7) Fast Healthcare Interoperability Resources (FHIR) standard. The issue lies in the XSLT parsing component, which is susceptible to XML External Entity (XXE) injections. A malicious DTD tag, such as <!DOCTYPE foo [<!ENTITY example SYSTEM "/etc/passwd"> ], can be injected, resulting in the processing of data from the host system. This vulnerability comes into play when org.hl7.fhir.core is used in environments where external clients can submit XML. The initial fixes for this issue, identified as GHSA-6cr6-ph3p-f5rf, were reportedly incomplete. Users are urged to upgrade to the release version 6.4.0 to mitigate this risk. At present, there are no known workarounds for this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share