{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-32238", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-11T14:47:05.684Z", "datePublished": "2026-03-19T19:30:53.616Z", "dateUpdated": "2026-03-19T19:30:53.616Z"}, "containers": {"cna": {"title": "OpenEMR has Remote Code Execution in backup functionality", "problemTypes": [{"descriptions": [{"cweId": "CWE-78", "lang": "en", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/openemr/openemr/security/advisories/GHSA-6pmc-3xm7-pm86", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/openemr/openemr/security/advisories/GHSA-6pmc-3xm7-pm86"}, {"name": "https://github.com/openemr/openemr/commit/7bc7bd077a624e205daed17658de41af6070ef73", "tags": ["x_refsource_MISC"], "url": "https://github.com/openemr/openemr/commit/7bc7bd077a624e205daed17658de41af6070ef73"}], "affected": [{"vendor": "openemr", "product": "openemr", "versions": [{"version": "< 8.0.0.2", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-19T19:30:53.616Z"}, "descriptions": [{"lang": "en", "value": "OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 8.0.0.2 contain a Command injection vulnerability in the backup functionality that can be exploited by authenticated attackers. The vulnerability exists due to insufficient input validation in the backup functionality. Version 8.0.0.2 fixes the issue."}], "source": {"advisory": "GHSA-6pmc-3xm7-pm86", "discovery": "UNKNOWN"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 8.0.0.2 contain a Command injection vulnerability in the backup functionality that can be exploited by authenticated attackers. The vulnerability exists due to insufficient input validation in the backup functionality. Version 8.0.0.2 fixes the issue."}], "id": "CVE-2026-32238", "lastModified": "2026-03-20T13:39:46.493", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 6.0, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-19T20:16:14.057", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/openemr/openemr/commit/7bc7bd077a624e205daed17658de41af6070ef73"}, {"source": "security-advisories@github.com", "url": "https://github.com/openemr/openemr/security/advisories/GHSA-6pmc-3xm7-pm86"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,8.0.0.2)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "openemr", "source": "cna", "vendor": "openemr"}, "product": "openemr", "vendor": "openemr"}], "analysis": {"en": {"generated_at": "2026-03-19T20:20:39.346161+00:00", "value": {"mitigation_remediation": ["Upgrade OpenEMR to version 8.0.0.2 or later to eliminate the command injection flaw."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "All installations of OpenEMR running a version earlier than 8.0.0.2 are impacted. The company releasing the fix, OpenEMR, has identified 8.0.0.2 as the version that contains the patch.\n", "description_and_impact": "OpenEMR versions before 8.0.0.2 contain a command injection flaw in the backup feature, exposing the system to remote code execution when an attacker can trigger the backup process. The vulnerability is caused by insufficient input validation, allowing arbitrary OS commands to be executed on the server. The affected CPS lists openemr:openemr and is associated with CWE-78.\n", "risk_and_exploitability": "With a CVSS score of 9.1 the issue is classified as critical. The attack requires authentication and the ability to initiate a backup, implying local or privileged access is needed. EPSS data is not available, and the vulnerability is not listed in CISA\u2019s KEV catalog, but its high CVSS rating indicates a strong need for remediation.\n"}}}}, "created": "2026-03-20T08:56:28.256800+00:00", "updated": "2026-03-20T11:06:38.251678+00:00", "vendors": ["openemr", "openemr$PRODUCT$openemr"]}