Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OpenEMR may expose Contents of Clinical Notes and Care Planto users who do not have Sensitivities=high privilege
Vulnerability Description
OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 7.0.4 have a vulnerability where sensitive data is unintentionally revealed to unauthorized parties. Contents of Clinical Notes and Care Plan, where an encounter has Sensitivity=high, can be viewed and changed by users who do not have Sensitivities=high privilege. Version 7.0.4 fixes the issue.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
OpenEMR 信息泄露漏洞
Vulnerability Description
OpenEMR是OpenEMR社区的一套开源的医疗管理系统。该系统可用于医疗实践管理、电子医疗记录、处方书写和医疗帐单申请。 OpenEMR 7.0.4之前版本存在信息泄露漏洞,该漏洞源于访问控制不当,可能导致未授权用户查看和修改敏感数据。
CVSS Information
N/A
Vulnerability Type
N/A