anonhaven
Ad

CVE-2026-25146

HIGH CVSS 3.1: 8.1 EPSS 0.06%
Updated Mar 04, 2026
Open-Emr
Parameter Value
CVSS 8.1 (HIGH)
Affected Versions 5.0.2 — 8.0.0
Fixed In 8.0.0
Type CWE-200 (Information Exposure)
Vendor Open-Emr
Public PoC No

OpenEMR is a free and open source electronic health records and medical practice management application. From 5.0.2 to before 8.0.0, there are (at least) two paths where the gateway_api_key secret value is rendered to the client in plaintext. These secret keys being leaked could result in arbitrary money movement or broad account takeover of payment gateway APIs.

This vulnerability is fixed in 8.0.0.

Attack Parameters

Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Privileges Required
Low
Basic privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
None
No disruption

CVSS Vector v3.1

Weakness Type (CWE)

CWE-200 Information Exposure

Vulnerable Products 1

Configuration From (including) Up to (excluding)
Open-Emr Openemr
cpe:2.3:a:open-emr:openemr:*:*:*:*:*:*:*:*
 5.0.2 8.0.0

References 4

https://github.com/openemr/openemr/blob/6a4e18c5ec73e0c755f6f65b28a9652aded1a58…
security-advisories@github.com
https://github.com/openemr/openemr/blob/6a4e18c5ec73e0c755f6f65b28a9652aded1a58…
security-advisories@github.com
https://github.com/openemr/openemr/commit/fe6341496dc82d5b4f5a3f35891bb2e2481f3…
security-advisories@github.com
https://github.com/openemr/openemr/security/advisories/GHSA-2hq8-wc73-jvvq
security-advisories@github.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-34056

Open-Emr

6.5

CVE-2026-34055

Open-Emr

6.3

CVE-2026-34053

Open-Emr

8.1

CVE-2026-34051

Open-Emr

5.4

CVE-2026-33934

Open-Emr

4.3