CVE-2017-1000241

Published: Nov 17, 2017Modified: May 13, 2026

8.1

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Exploitability: 2.8 / Impact: 5.2

Source: NVD

Description

The application OpenEMR version 5.0.0, 5.0.1-dev and prior is affected by vertical privilege escalation vulnerability. This vulnerability can allow an authenticated non-administrator users to view and modify information only accessible to administrators.

Affected (1)

Products: Open Emr: Openemr

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Open Emr Openemr	Up to 5.0.1

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (2)

https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2017-004

Source: cve@mitre.org

Issue TrackingTechnical Description

https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2017-004

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingTechnical Description

Timeline

No history available yet.