Vulnerabilities > Changehealthcare

DATE CVE VULNERABILITY TITLE RISK
2019-09-06 CVE-2018-18630 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
A vulnerability was found in McKesson Cardiology product 13.x and 14.x.
local
low complexity
mckesson changehealthcare CWE-732
4.6
2017-12-15 CVE-2017-14101 XXE vulnerability in Changehealthcare Conserus Image Repository 2.1.1.105
A security researcher found an XML External Entity (XXE) vulnerability on the Conserus Image Repository archive solution version 2.1.1.105 by McKesson Medical Imaging Company, which is now a Change Healthcare company.
network
low complexity
changehealthcare CWE-611
5.0