CVE-2025-67645

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions OpenEMR versions prior to 7.0.4

Description OpenEMR is an electronic health records and medical practice management application. A broken access control exists in the Profile Edit endpoint. An authenticated user can modify request parameters (pubpid / pid) to reference another user’s record. The server accepts these modified IDs and applies changes to the other user’s profile, allowing alteration of profile data like name and contact information, potentially leading to account takeover. The affected API endpoint is the Profile Edit endpoint.

Recommendations Update to version 7.0.4 or later.

Exploit

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2025-67645

GHSA-VJMV-CF46-GFFV

Affected Products

Openemr

CVE-2025-67645

Weakness Enumeration

Related Identifiers

Affected Products

References · 11