CVE-2026-34056
Published: 26 March 2026
Summary
CVE-2026-34056 is a high-severity Improper Authorization (CWE-285) vulnerability in Open-Emr Openemr. Its CVSS base score is 7.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked at the 6.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 AC-24 (Access Control Decisions) and AC-3 (Access Enforcement).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Enforces approved authorizations for logical access to system resources like Ensora eRx error logs, directly preventing low-privilege users from viewing or downloading them without proper checks.
Authorizes access to specific system resources such as error logs by defined roles or personnel, countering improper authorization and forced browsing to sensitive logs.
Employs least privilege to ensure low-privilege users cannot access administrative error logs containing sensitive information.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Broken access control (forced browsing) directly enables unauthorized retrieval of local error log files containing sensitive data, mapping to collection from the local system.
NVD Description
OpenEMR is a free and open source electronic health records and medical practice management application. A Broken Access Control vulnerability in OpenEMR up to and including version 8.0.0.3 allows low-privilege users to view and download Ensora eRx error logs without…
more
proper authorization checks. This flaw compromises system confidentiality by exposing sensitive information, potentially leading to unauthorized data disclosure and misuse. As of time of publication, no known patches versions are available.
Deeper analysisAI
CVE-2026-34056 is a Broken Access Control vulnerability in OpenEMR, a free and open source electronic health records and medical practice management application, affecting versions up to and including 8.0.0.3. The flaw enables low-privilege users to view and download Ensora eRx error logs without proper authorization checks, compromising system confidentiality and exposing sensitive information that could lead to unauthorized data disclosure and misuse. It carries a CVSS v3.1 base score of 7.7 (AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N) and maps to CWE-285 (Improper Authorization) and CWE-425 (Direct Request ('Forced Browsing')).
The vulnerability can be exploited by low-privilege authenticated users over the network with low complexity and no user interaction required. Successful exploitation allows attackers to access and retrieve Ensora eRx error logs, achieving high-impact confidentiality violations through unauthorized exposure of potentially sensitive data contained in those logs.
As of publication on 2026-03-26T00:16:41.400, no patched versions of OpenEMR are available. Security advisories recommend monitoring the GitHub security advisory at https://github.com/openemr/openemr/security/advisories/GHSA-6qg7-6jf3-xrfh and the release page for version 8.0.0.3 at https://github.com/openemr/openemr/releases/tag/v8_0_0_3 for updates on mitigations or fixes.
Details
- CWE(s)