Browse all 3 CVE security advisories affecting MedData. AI-powered Chinese analysis, POCs, and references for each vulnerability.
MedData specializes in healthcare information management systems, handling sensitive patient data and medical records. Historically, the organization has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access controls. While no major public security incidents have been documented, the three recorded CVEs highlight ongoing security challenges in protecting healthcare infrastructure. The company's systems process critical health information, making them attractive targets for attackers seeking valuable patient data. Security remains a concern given the nature of information handled and the potential impact of breaches on patient privacy and healthcare operations.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-0979 | SQLi in MedDataPACS — MedDataPACS CWE-89 | 9.8 | Critical | 2023-03-06 |
| CVE-2021-43362 | MedData HBYS 1.0 Remote SQL Injection Vulnerability — HBYSCWE-89 | 9.9 | Critical | 2022-09-29 |
| CVE-2021-43361 | MedData HBYS 1.0 Remote SQL Injection Vulnerability — HBYSCWE-89 | 9.9 | Critical | 2022-09-29 |
This page lists every published CVE security advisory associated with MedData. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.