Researchers have discovered three separate vulnerabilities in OpenEMR, an open-source software program for digital well being data and medical apply administration.
Clear code consultants at Sonar printed an advisory Wednesday concerning the found flaws by safety researcher Dennis Brinkrolf.
“Throughout our safety analysis of well-liked net purposes, we found a number of code vulnerabilities in OpenEMR,” Brinkrolf wrote.
“A mixture of those vulnerabilities permits distant attackers to execute arbitrary system instructions on any OpenEMR server and to steal delicate affected person information. Within the worst case, they’ll compromise the whole essential infrastructure.”
The safety professional defined that the corporate’s static utility safety testing (SAST) engine found that two of those three vulnerabilities mixed may result in unauthenticated distant code execution (RCE).
“In abstract, an attacker can use the mirrored XSS, add a PHP file […] after which use the trail traversal by way of the Native File Inclusion to execute the PHP file. It takes a couple of tries to determine the suitable Unix timestamp however finally results in distant code execution.”
As for the third vulnerability, it allowed attackers to configure OpenEMR in a sure manner in an effort to finally steal consumer information.
“In different phrases, if OpenEMR is ready up appropriately, an unauthenticated attacker can learn recordsdata like certificates, passwords, tokens, and backups from an OpenEMR occasion by way of a rogue MySQL server,” Brinkrolf defined.
The safety researcher added that Sonar reported all points to the OpenEMR maintainers on October 24, 2022, who then launched a patch to model 7.0.0, fixing all three vulnerabilities seven days later.
“If you’re utilizing OpenEMR, we strongly suggest updating to the mounted variations talked about above,” the Sonar put up concluded. “We need to thank the OpenEMR group for his or her skilled and quick responses and patches.”
The patched vulnerabilities come virtually 5 years after researchers at Undertaking Insecurity discovered over 20 flaws (now mounted) in OpenEMR.
