VYPR

Maven package

dev.dsf/dsf-fhir-server

pkg:maven/dev.dsf/dsf-fhir-server

Vulnerabilities (1)

  • CVE-2026-40939MedApr 21, 2026
    affected >= 0

    The Data Sharing Framework (DSF) implements a distributed process engine based on the BPMN 2.0 and FHIR R4 standards. Prior to 2.1.0, OIDC-authenticated sessions had no configured maximum inactivity timeout. Sessions persisted indefinitely after login, even after the OIDC access