Main Vulnerability Database SB2026043052

SB2026043052 - Authorization bypass through user-controlled key in OpenEMR

Published: April 30, 2026

Security Bulletin ID SB2026043052

CSH Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Authorization bypass through user-controlled key (CVE-ID: CVE-2026-34055)

The vulnerability allows a remote user to read and modify patient notes belonging to other patients.

The vulnerability exists due to authorization bypass through a user-controlled key in the legacy patient notes web UI functions in library/pnotes.inc.php when handling user-supplied note IDs. A remote user can supply a note ID for a patient they are not authorized to access to read and modify patient notes belonging to other patients.

The issue affects web UI code paths that update, delete, hide, reappear, authorize, or change message status for notes, and user interaction is not required.

Remediation

Install update from vendor's website.

References

https://github.com/openemr/openemr/security/advisories/GHSA-8gj5-r8vm-mghq