PT-2026-45897 · Eipstackgroup · Openemr
Qvuq_Lkx
·
Published
2026-06-03
·
Updated
2026-06-03
·
CVE-2026-10703
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
EIPStackGroup OpENer versions prior to 2.3.1
Description
A use after free issue exists in the
CreateMessageRouterRequestStructure() function within the cipmessagerouter.c file of the SendRRData Handler component. This flaw allows for remote exploitation.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
As a temporary workaround, consider restricting the use of the
CreateMessageRouterRequestStructure() function to minimize the risk of exploitation.Exploit
Buffer Overflow
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Openemr