PT-2026-21982 · Openemr · Openemr

Simecek

Published

2026-02-25

Updated

2026-02-26

CVE-2026-25927

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

Name of the Vulnerable Software and Affected Versions OpenEMR versions prior to 8.0.0

Description OpenEMR is an electronic health records and medical practice management application. Versions prior to 8.0.0 have an issue where the DICOM viewer state API does not verify if a document belongs to the current user’s authorized patient or encounter when accepting a document ID (doc id). This allows an authenticated user to read or modify DICOM viewer state, such as annotations and view settings, for any document by enumerating document IDs. The API endpoints affected include those for uploading or saving/loading DICOM viewer state.

Recommendations Update to version 8.0.0 or later.

Exploit

Fix

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639

Related Identifiers

CVE-2026-25927

GHSA-QJ9F-X7V2-HRR7

Affected Products

Openemr

PT-2026-21982 · Openemr · Openemr

CVE-2026-25927

Weakness Enumeration

Related Identifiers

Affected Products

References · 5