Brian D. Hysell

**Name of the Vulnerable Software and Affected Versions** OpenClinic GA version 5.09.02 **Description** The issue concerns a hidden default user account in OpenClinic GA. If an administrator has not explicitly disabled this account, it may be accessed by an attacker, potentially allowing them to log in and execute arbitrary commands. **Recommendations** For OpenClinic GA version 5.09.02, ensure that the default user account is expressly turned off by an administrator to prevent potential unauthorized access.

**Name of the Vulnerable Software and Affected Versions** OpenClinic GA versions 5.09.02 through 5.89.05b **Description** The issue concerns an authentication mechanism within the system that lacks sufficient complexity, making it vulnerable to brute force attacks. This could allow unauthorized users to access the system after a limited number of attempts. **Recommendations** For OpenClinic GA versions 5.09.02 through 5.89.05b, consider implementing additional security measures to enhance the authentication mechanism, such as increasing the complexity of passwords or introducing a rate-limiting feature to mitigate brute force attacks. As a temporary workaround, restrict access to sensitive areas of the system to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenEMR versions 2.x through 4.1.1 OpenEMR version 4.2.0 before patch 2 **Description** The issue allows remote attackers to bypass authentication and obtain sensitive information by providing an `ignoreAuth=1` value to certain scripts. This is demonstrated by accessing the "interface/fax/fax dispatch newpid.php" and "interface/billing/sl eob search.php" scripts. **Recommendations** For OpenEMR versions 2.x through 4.1.1, update to version 4.2.0 patch 2 or later. For OpenEMR version 4.2.0 before patch 2, apply patch 2 to resolve the issue. As a temporary workaround, consider restricting access to the `fax dispatch newpid.php` and `sl eob search.php` scripts until the issue is resolved.