Vulnerabilities > CVE-2022-1461 - Authorization Bypass Through User-Controlled Key vulnerability in Open-Emr Openemr

047910
CVSS 4.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
open-emr
CWE-639
NVD
Published: 2022-04-25
Updated: 2022-05-04

Summary

Non Privilege User can Enable or Disable Registered in GitHub repository openemr/openemr prior to 6.1.0.1.

Vulnerable Configurations

Part Description Count
Application
Open-Emr
51

Common Weakness Enumeration (CWE)

References