Vulnerability Description
OpenEMR before 5.0.0 Patch 5 allows unauthenticated remote database copying because setup.php exposes functionality for cloning an existing OpenEMR site to an arbitrary attacker-controlled MySQL server via vectors involving a crafted state parameter.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open-Emr | Openemr | < 5.0.0 |
Related Weaknesses (CWE)
References
- http://www.open-emr.org/wiki/index.php/OpenEMR_PatchesIssue TrackingPatchVendor Advisory
- http://www.securityfocus.com/bid/101983
- https://isears.github.io/jekyll/update/2017/10/28/openemr-database-disclosure.htExploitIssue TrackingThird Party Advisory
- http://www.open-emr.org/wiki/index.php/OpenEMR_PatchesIssue TrackingPatchVendor Advisory
- http://www.securityfocus.com/bid/101983
- https://isears.github.io/jekyll/update/2017/10/28/openemr-database-disclosure.htExploitIssue TrackingThird Party Advisory
FAQ
What is CVE-2017-16540?
CVE-2017-16540 is a vulnerability with a CVSS score of 7.5 (HIGH). OpenEMR before 5.0.0 Patch 5 allows unauthenticated remote database copying because setup.php exposes functionality for cloning an existing OpenEMR site to an arbitrary attacker-controlled MySQL serve...
How severe is CVE-2017-16540?
CVE-2017-16540 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-16540?
Check the references section above for vendor advisories and patch information. Affected products include: Open-Emr Openemr.