What is the CVSS score of CVE-2026-24890?

CVE-2026-24890 has a CVSS 3.1 base score of 8.1 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.1%.

Which versions of Openemr are affected by CVE-2026-24890?

OpenEMR installations are vulnerable to a high-severity attack (CVE-2026-24890) with a public exploit available, potentially exposing protected health information and disrupting clinical operations.. A patch is available.

Is there a public PoC exploit available for CVE-2026-24890?

Yes, a public proof-of-concept exploit is available for CVE-2026-24890. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2026-24890?

Within 24 hours: Inventory all OpenEMR instances and confirm patch availability for your deployed version; isolate or restrict network access to unpatched systems. Within 7 days: Apply vendor patch to all production and non-production OpenEMR environments and validate functionality post-patch. Within 30 days: Conduct security testing to confirm patch effectiveness and review access logs for signs of exploitation.

Openemr CVE-2026-24890

HIGH

Improper Authorization (CWE-285)

2026-02-25 security-advisories@github.com

Authentication Bypass Openemr

8.1

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

8.1 HIGH

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

PoC Detected

Feb 27, 2026 - 14:43 vuln.today

Public exploit code

Patch released

Feb 27, 2026 - 14:43 nvd

Patch available

CVE Published

Feb 25, 2026 - 19:43 nvd

HIGH 8.1

DescriptionGitHub Advisory

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an authorization bypass vulnerability in the patient portal signature endpoint allows authenticated portal users to upload and overwrite provider signatures by setting type=admin-signature and specifying any provider user ID. This could potentially lead to signature forgery on medical documents, legal compliance violations, and fraud. The issue occurs when portal users are allowed to modify provider signatures without proper authorization checks. Version 8.0.0 fixes the issue.

AnalysisAI

OpenEMR versions prior to 8.0.0 contain an authorization bypass in the patient portal that allows authenticated users to forge provider signatures by uploading files with admin-signature type parameters for any provider. Public exploit code exists for this vulnerability, which could enable signature forgery on medical documents, creating legal and compliance risks. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate as portal user

Delivery

Access signature endpoint

Exploit

Set type=admin-signature parameter

Execution

Specify target provider user ID

Persist

Upload forged signature

Impact

Overwrite legitimate provider signature