Цены Enterprise

CVE-2024-37734

9.8CRITICAL

An issue in OpenEMR 7.0.2 allows a remote attacker to escalate privileges viaa crafted POST request using the noteid parameter.

Опубликовано: 6/26/2024Обновлено: 5/1/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

An issue in OpenEMR 7.0.2 allows a remote attacker to escalate privileges viaa crafted POST request using the noteid parameter.

ИИ-АнализНа базе ИИ

Затронутые продукты

open-emropenemr

7.0.2

Ссылки

https://github.com/A3h1nt/CVEs/tree/main/OpenEMR
ExploitThird Party Advisory
https://github.com/openemr/openemr/pull/7435#event-12872646667
PatchVendor Advisory
https://github.com/A3h1nt/CVEs/tree/main/OpenEMR
ExploitThird Party Advisory
https://github.com/openemr/openemr/pull/7435#event-12872646667
PatchVendor Advisory