Lucene search
K

10 matches found

CNNVD
CNNVD
added 2026/03/26 12:0 a.m.10 views

OpenEMR 安全漏洞

OpenEMR is an open-source medical management system developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. Versions of OpenEMR prior to 8.0.0.3 contained security...

4.3CVSS5.9AI score0.00235EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/25 11:41 p.m.4 views

CVE-2026-33934

OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 8.0.0.3 have a missing authorization check in portal/sign/lib/show-signature.php that allows any authenticated patient portal user to retrieve the drawn signature image of an...

4.3CVSS6AI score0.00235EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.17 views

PT-2026-28154

OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 8.0.0.3 have a missing authorization check in portal/sign/lib/show-signature.php that allows any authenticated patient portal user to retrieve the drawn signature image of an...

4.3CVSS6AI score0.00235EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/02/26 10:34 p.m.7 views

CVE-2026-24890

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.6AI score0.00239EPSS
Exploits1References1
OSV
OSV
added 2026/02/25 6:10 p.m.4 views

CVE-2026-24890 OpenEMR Portal Users Can Forge Provider Signatures

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.7AI score0.00239EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/25 6:10 p.m.2 views

CVE-2026-24890 OpenEMR Portal Users Can Forge Provider Signatures

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS5.9AI score0.00239EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/02/25 6:10 p.m.21 views

CVE-2026-24890 OpenEMR Portal Users Can Forge Provider Signatures

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting...

8.1CVSS0.00239EPSS
Exploits1References2
CVE
CVE
added 2026/02/25 6:10 p.m.14 views

CVE-2026-24890

OpenEMR prior to 8.0.0 contains an Authorization bypass in the patient portal signature endpoint that lets authenticated portal users forge provider signatures by setting type=admin-signature and targeting any provider user ID. This could enable signature forgery on medical documents, with possib...

8.1CVSS5.6AI score0.00239EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.10 views

OpenEMR 安全漏洞

OpenEMR is a set of open-source medical management systems developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. Versions of OpenEMR prior to 8.0.0 contained security...

8.1CVSS5.8AI score0.00239EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.7 views

PT-2026-21973

Name of the Vulnerable Software and Affected Versions OpenEMR versions prior to 8.0.0 Description OpenEMR is an electronic health records and medical practice management application. An authorization bypass in the patient portal signature endpoint allows authenticated portal users to upload and...

8.1CVSS5.3AI score0.00239EPSS
Exploits1References7
Rows per page
Query Builder