CVE-2024-37734 | OpenEMR 7.0.2 POST Request noteid Privilege Escalation

Posted by Angelo Barbosa | Jun 27, 2024 | CVE

A vulnerability was found in OpenEMR 7.0.2. It has been classified as critical. Affected is an unknown function of the component POST Request Handler. The manipulation of the argument noteid leads to Privilege Escalation.

This vulnerability is traded as CVE-2024-37734. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-37734 | OpenEMR 7.0.2 POST Request noteid Privilege Escalation

Related Posts

CVE-2024-38532 | usbarmory mxs-dcp dcp_tool hard-coded key (GHSA-g85c-rh49-p8cq)

CVE-2024-24939 | JetBrains Rider prior 2023.3.3 Environment Variable log file

CVE-2024-35211 | Siemens SINEC Traffic Analyzer up to 1.1 missing secure attribute (ssa-196737)

CVE-2024-28974 | Dell Data Protection Advisor inadequate encryption (dsa-2024-192)