Preços Enterprise

CVE-2024-37734

9.8CRITICAL

An issue in OpenEMR 7.0.2 allows a remote attacker to escalate privileges viaa crafted POST request using the noteid parameter.

Publicado: 6/26/2024Atualizado: 5/1/2025

Ver no NVD Ver no MITRE

Descrição

An issue in OpenEMR 7.0.2 allows a remote attacker to escalate privileges viaa crafted POST request using the noteid parameter.

Análise IADesenvolvido por IA

Produtos Afetados

open-emropenemr

7.0.2

Referências

https://github.com/A3h1nt/CVEs/tree/main/OpenEMR
ExploitThird Party Advisory
https://github.com/openemr/openemr/pull/7435#event-12872646667
PatchVendor Advisory
https://github.com/A3h1nt/CVEs/tree/main/OpenEMR
ExploitThird Party Advisory
https://github.com/openemr/openemr/pull/7435#event-12872646667
PatchVendor Advisory