Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2014-5452

CDA.xsl in HL7 C-CDA 1.1 and earlier does not anticipate the possibility of invalid C-CDA documents with crafted XML attributes, which allows remote attackers to conduct XSS attacks via a document containing a table that is improperly handled during unrestricted xsl:copy operations.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.5%
CVSS Severity
CVSS v2 Score 4.3
Products affected by CVE-2014-5452
  • Hl7 » C-Cda » Version: 1.1
    cpe:2.3:a:hl7:c-cda:1.1


Contact Us

Shodan ® - All rights reserved