CVE-2018-1000646

Published August 20th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.5

MEDIUM

Affected

PROJECT

Description

LibreHealthIO LH-EHR version REL-2.0.0 contains an Authenticated Unrestricted File Write vulnerability in Import template that can result in write files with malicious content and may lead to remote code execution.

LibreHealthIO/lh-ehr

LibreHealth EHR - Free Open Source Electronic Health Records

GitHub

296