CRITICALCVE-2026-24849Published 2026-02-25Modified 2026-02-25CNA GitHub_M

CVE-2026-24849: OpenEMR Arbitrary File Read Vulnerability

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 7.0.4, the `disposeDocument()` method in `EtherFaxActions.php` allows authenticated users to read arbitrary files from the server filesystem. Any authenticated user (regardless of privilege level) can exploit this vulnerability to read sensitive files. Version 7.0.4 patches the issue.

CVSS v3.1: 10.0
Severity: CRITICAL
Fixed in: —
Affected Products: 1

Affected packages

openemr / openemr
< 7.0.4

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References

https://github.com/openemr/openemr/security/advisories/GHSA-w6vc-hx2x-48pc
https://github.com/openemr/openemr/commit/22f8e53e5769a88b7a16cb223bd197d044c84e5a

Metrics