What the vulnerability does
01Description
Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1.
CVSS base score
6.3/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Key dates
02Disclosure timeline
May 27, 2023
CVE published
January 14, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2012-6068 3S CoDeSys Improper Access Control
CVE-2024-1678 Subway – Private Site Option <= 2.1.4 - Improper Access Control to Sensitive Information Exposure via REST API
CVE-2022-39865
CVE-2021-44460
CVE-2022-1553 Leaking password protected articles content due to improper access control in publify/publify
