eclinicalworks security advisories

2 threat alerts tracking vulnerabilities and security advisories that affect eclinicalworks products.

Vulnios monitors eclinicalworks CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent eclinicalworks security news in one place, or click into an individual alert for full detail.

Critical Vulnerability: CVE-2015-4594 — eclinicalworks — population_health
eClinicalWorks Population Health (CCMR) suffers from a session fixation vulnerability. When authenticating a user, the application does not assign a new session ID, making it possible to use an existe
criticalCVE-2015-4594
Critical Vulnerability: CVE-2017-5569 — eclinicalworks — patient_portal
An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. This is a blind SQL injection within the template.jsp, which can be exploited without the need of authentication and via an HTTP
criticalCVE-2017-5569

Track eclinicalworks exposure across your environment

Vulnios automatically cross-references your asset inventory against new eclinicalworks CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.

Start a free scan

eclinicalworks security advisories

Critical Vulnerability: CVE-2015-4594 — eclinicalworks — population_health

Critical Vulnerability: CVE-2017-5569 — eclinicalworks — patient_portal

Track eclinicalworks exposure across your environment