Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/02/26 10:34 p.m.5 views

CVE-2026-24890

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.6AI score0.00239EPSS
Exploits1References1
NVD
NVD
added 2026/02/25 7:43 p.m.8 views

CVE-2026-24890

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS0.00239EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/25 6:10 p.m.2 views

CVE-2026-24890 OpenEMR Portal Users Can Forge Provider Signatures

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.9AI score0.00239EPSS
Exploits1References2
EUVD
EUVD
added 2026/02/25 6:10 p.m.6 views

EUVD-2026-8702

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.6AI score0.00239EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/02/25 6:10 p.m.3 views

CVE-2026-24890

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.8AI score0.00239EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/02/25 6:10 p.m.13 views

CVE-2026-24890

OpenEMR prior to 8.0.0 contains an Authorization bypass in the patient portal signature endpoint that lets authenticated portal users forge provider signatures by setting type=admin-signature and targeting any provider user ID. This could enable signature forgery on medical documents, with possib...

8.1CVSS5.6AI score0.00239EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2026/02/25 6:10 p.m.3 views

CVE-2026-24890 OpenEMR Portal Users Can Forge Provider Signatures

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.7AI score0.00239EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.6 views

PT-2026-21973

Name of the Vulnerable Software and Affected Versions OpenEMR versions prior to 8.0.0 Description OpenEMR is an electronic health records and medical practice management application. An authorization bypass in the patient portal signature endpoint allows authenticated portal users to upload and...

8.1CVSS5.3AI score0.00239EPSS
Exploits1References7
Rows per page
Query Builder