Total
22 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-1000646 | 1 Librehealth | 1 Librehealth Ehr | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
LibreHealthIO LH-EHR version REL-2.0.0 contains an Authenticated Unrestricted File Write vulnerability in Import template that can result in write files with malicious content and may lead to remote code execution. | |||||
CVE-2018-1000647 | 1 Librehealth | 1 Librehealth Ehr | 2024-02-28 | 5.5 MEDIUM | 7.1 HIGH |
LibreHealthIO lh-ehr version REL-2.0.0 contains a Authenticated Unrestricted File Deletion vulnerability in Import template that can result in Denial of service. This attack appear to be exploitable via User controlled parameter. |