CVE-2025-35034
Medical Informatics Engineering Enterprise Health has a reflected cross site scripting vulnerability in the 'portlet_user_id' URL parameter. A remote, unauthenticated attacker can craft a URL that can execute arbitrary JavaScript in the victim's browser. This issue is fixed as of 2025-03-14.
| Software | From | Fixed in |
|---|---|---|
| mieweb / enterprise_health | rc202309 | rc202309.x |
| mieweb / enterprise_health | rc202403 | rc202403.x |
| mieweb / enterprise_health | rc202409 | rc202409.x |
| mieweb / enterprise_health | rc202503 | rc202503.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime