Remote Privilege Escalation Vulnerability in OpenEMR 7.0.2
CVE-2024-37734

Currently unrated

Key Information:

Vendor

OpenEMR

Status
Openemr
Vendor
CVE Published:
26 June 2024

What is CVE-2024-37734?

An issue in OpenEMR 7.0.2 allows a remote attacker to escalate privileges viaa crafted POST request using the noteid parameter.

References

https://github.com/A3h1nt/CVEs/tree/main/OpenEMR
https://github.com/openemr/openemr/pull/7435#event-128726...

Timeline

  • Vulnerability published

.