Vulnerabilities > Fhir
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-10 | CVE-2021-32053 | Resource Exhaustion vulnerability in Fhir Hapi Fhir JPA Server in HAPI FHIR before 5.4.0 allows a user to deny service (e.g., disable access to the database after the attack stops) via history requests. | 5.0 |
| 2019-06-05 | CVE-2019-12741 | Cross-site Scripting vulnerability in Fhir Hapi Fhir XSS exists in the HAPI FHIR testpage overlay module of the HAPI FHIR library before 3.8.0. | 4.3 |