Skip to main content

Openmrs CVE-2017-12796

CRITICAL
Deserialization of Untrusted Data (CWE-502)
2017-10-23 cve@mitre.org
9.8
CVSS 3.0 · NVD
Share

Severity by source

NVD PRIMARY
9.8 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Oct 23, 2017 - 04:29 cve.org
CRITICAL 9.8

DescriptionCVE.org

The Reporting Compatibility Add On before 2.0.4 for OpenMRS, as distributed in OpenMRS Reference Application before 2.6.1, does not authenticate users when deserializing XML input into ReportSchema objects. The result is that remote unauthenticated users are able to execute operating system commands by crafting malicious XML payloads, as demonstrated by a single admin/reports/reportSchemaXml.form request.

AnalysisAI

The Reporting Compatibility Add On before 2.0.4 for OpenMRS, as distributed in OpenMRS Reference Application before 2.6.1, does not authenticate users when deserializing XML input into ReportSchema. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Deserialization of Untrusted Data (CWE-502), which allows attackers to execute arbitrary code through malicious serialized objects. The Reporting Compatibility Add On before 2.0.4 for OpenMRS, as distributed in OpenMRS Reference Application before 2.6.1, does not authenticate users when deserializing XML input into ReportSchema objects. The result is that remote unauthenticated users are able to execute operating system commands by crafting malicious XML payloads, as demonstrated by a single admin/reports/reportSchemaXml.form request. Affected products include: Openmrs. Version information: before 2.0.4.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Avoid deserializing untrusted data. Use safe serialization formats (JSON). Implement integrity checks and type allowlists.

CVE-2022-23612 HIGH POC
7.5 Feb 22

OpenMRS is a patient-based medical record system focusing on giving providers a free customizable electronic medical rec

CVE-2014-8073 MEDIUM POC
6.8 Oct 23

Cross-site request forgery (CSRF) vulnerability in OpenMRS 2.1 Standalone Edition allows remote attackers to hijack the

CVE-2020-5733 MEDIUM POC
6.1 Apr 17

In OpenMRS 2.9 and prior, the export functionality of the Data Exchange Module does not properly redirect to a login pag

CVE-2020-5732 MEDIUM POC
6.1 Apr 17

In OpenMRS 2.9 and prior, he import functionality of the Data Exchange Module does not properly redirect to a login page

CVE-2020-5731 MEDIUM POC
6.1 Apr 17

In OpenMRS 2.9 and prior, the app parameter for the ActiveVisit's page is vulnerable to cross-site scripting. Rated medi

CVE-2020-5730 MEDIUM POC
6.1 Apr 17

In OpenMRS 2.9 and prior, the sessionLocation parameter for the login page is vulnerable to cross-site scripting. Rated

CVE-2020-5729 MEDIUM POC
6.1 Apr 17

In OpenMRS 2.9 and prior, the UI Framework Error Page reflects arbitrary, user-supplied input back to the browser, which

CVE-2020-5728 MEDIUM POC
6.1 Apr 17

OpenMRS 2.9 and prior copies "Referrer" header values into an html element named "redirectUrl" within many webpages (suc

CVE-2025-25925 MEDIUM POC
4.8 Mar 11

A stored cross-scripting (XSS) vulnerability in Openmrs v2.4.3 Build 0ff0ed allows attackers to execute arbitrary web sc

CVE-2014-8071 MEDIUM POC
4.3 Oct 23

Multiple cross-site scripting (XSS) vulnerabilities in OpenMRS 2.1 Standalone Edition allow remote attackers to inject a

CVE-2014-8072 MEDIUM POC
4.0 Oct 23

The administration module in OpenMRS 2.1 Standalone Edition allows remote authenticated users to obtain read access via

Share

CVE-2017-12796 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy