What is the CVSS score of CVE-2026-24908?

CVE-2026-24908 has a CVSS 3.1 base score of 9.9 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Is there a public PoC exploit available for CVE-2026-24908?

Yes, a public proof-of-concept exploit is available for CVE-2026-24908. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-24908?

Within 24 hours: inventory all OpenEMR deployments and versions; disable REST API access if not operationally critical. Within 7 days: upgrade all instances to version 8.0.0 or later; audit API access logs for suspicious _sort parameter activity. Within 30 days: conduct full database integrity audit; notify legal/compliance of potential PHI exposure; review and tighten API access controls.

Openemr CVE-2026-24908

Q: Which versions of Openemr are affected by CVE-2026-24908?

A critical SQL injection vulnerability in OpenEMR's Patient REST API allows authenticated users with API access to execute arbitrary database queries, potentially exposing or modifying protected…. A patch is available.

CRITICAL

SQL Injection (CWE-89)

2026-02-25 security-advisories@github.com

SQLi Openemr

9.9

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

9.9 CRITICAL

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

PoC Detected

Feb 27, 2026 - 14:42 vuln.today

Public exploit code

Patch released

Feb 27, 2026 - 14:42 nvd

Patch available

CVE Published

Feb 25, 2026 - 19:43 nvd

CRITICAL 9.9

DescriptionGitHub Advisory

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, an SQL injection vulnerability in the Patient REST API endpoint allows authenticated users with API access to execute arbitrary SQL queries through the _sort parameter. This could potentially lead to database access, PHI (Protected Health Information) exposure, and credential compromise. The issue occurs when user-supplied sort field names are used in ORDER BY clauses without proper validation or identifier escaping. Version 8.0.0 fixes the issue.

AnalysisAI

SQL injection in OpenEMR electronic health records before fix. Authenticated users can execute arbitrary SQL through the medical records system. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate to OpenEMR REST API

Delivery

Send crafted _sort parameter in Patient endpoint

Exploit

Inject SQL into ORDER BY clause

Execution

Execute arbitrary SQL queries

Impact

Extract PHI and credentials from database

Access

Authenticate to OpenEMR REST API

Delivery

Send crafted _sort parameter in Patient endpoint

Exploit

Inject SQL into ORDER BY clause

Execution

Execute arbitrary SQL queries

Impact

Extract PHI and credentials from database

Vulnerability AssessmentAI

Exploitation	Authenticated API access to OpenEMR Patient REST API endpoint required; attacker must possess valid API credentials prior to version 8.0.0; no special database or configuration settings needed beyond standard OpenEMR deployment. Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.9, PoC available. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	Authenticated user (e.g., front desk staff) injects SQL to access all patient records, diagnoses, prescriptions, and financial data.
Remediation	Apply OpenEMR patch. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: inventory all OpenEMR deployments and versions; disable REST API access if not operationally critical. …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-24908 vulnerability details – vuln.today

Back

Openemr CVE-2026-24908

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Share

External POC / Exploit Code