Browse all 3 CVE security advisories affecting Merative. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Merative provides healthcare data analytics and clinical decision support solutions, processing sensitive patient information across its platforms. Historically, the organization's products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been widely reported, the three current CVEs highlight ongoing concerns about authentication bypass and injection flaws in their web applications. Their security posture reflects typical challenges in healthcare IT, where legacy systems and complex integrations create persistent exposure risks for critical infrastructure handling protected health information.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-23914 | Merative Merge DICOM Toolkit 安全漏洞 — Merge DICOM Toolkit C/C++CWE-134 | 5.7 | Medium | 2024-05-03 |
| CVE-2024-23913 | Merative Merge DICOM Toolkit 安全漏洞 — Merge DICOM Toolkit C/C++ | 4.0 | Medium | 2024-05-03 |
| CVE-2024-23912 | Merative Merge DICOM Toolkit 安全漏洞 — Merge DICOM Toolkit C/C++CWE-125 | 4.0 | Medium | 2024-05-03 |
This page lists every published CVE security advisory associated with Merative. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.