Unrated severityNVD Advisory· Published Sep 1, 2021· Updated Aug 4, 2024
CVE-2021-40352
CVE-2021-40352
Description
OpenEMR 6.0.0 has a pnotes_print.php?noteid= Insecure Direct Object Reference vulnerability via which an attacker can read the messages of all users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- OpenEMR/OpenEMRdescription
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/164011/OpenEMR-6.0.0-Insecure-Direct-Object-Reference.htmlmitrex_refsource_MISC
- www.open-emr.org/wiki/index.php/Securing_OpenEMRmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.