CVE-2026-34056

OpenEMR has a Privilege Escalation that Allows a Low-Level User to View Admin-Only Data

CVSS 7.7 HIGHEPSS 0.3%CWE-285 CWE-425

Vexday Risk Score

21Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 7.7EPSS 0.3%KEV nãoPoC —Patch —

Lifecycle

25 Mar 2026Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

OpenEMR is a free and open source electronic health records and medical practice management application. A Broken Access Control vulnerability in OpenEMR up to and including version 8.0.0.3 allows low-privilege users to view and download Ensora eRx error logs without proper authorization checks. This flaw compromises system confidentiality by exposing sensitive information, potentially leading to unauthorized data disclosure and misuse. As of time of publication, no known patches versions are available.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

openemr · openemr

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/openemr/openemr/releases/tag/v8_0_0_3 https://github.com/openemr/openemr/security/advisories/GHSA-6qg7-6jf3-xrfh