Openmrs Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Health Information Software8
Appointment Software2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

OpenMRS Admin UI Module2
OpenMRS openmrs-module-referenceapplication2
OpenMRS Reference Application Standalone Edition2
OpenMRS Platform Standalone Edition2
OpenMRS Appointment Scheduling Module2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix8
Temporary Fix0
Workaround0
Unavailable0
Not Defined2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical0
Local0
Adjacent0
Network10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High0
Low10
None0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required8
None2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤20
≤30
≤40
≤58
≤60
≤72
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤58
≤60
≤72
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤20
≤30
≤48
≤50
≤60
≤72
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤10
≤20
≤30
≤40
≤50
≤62
≤76
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤10
≤20
≤30
≤48
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k0
<2k10
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k10
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

🔴 CTI Activities

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Affected Products (6): Admin UI Module (3), Appointment Scheduling Module (2), HTML Form Entry UI Framework Integration Module (1), Platform Standalone Edition (1), Reference Application Standalone Edition (1), openmrs-module-referenceapplication (2)

PublishedBaseTempVulnerabilityProdExpRemEPSSCTICVE
12/27/20224.44.3OpenMRS Admin UI Module Account Setup AccountPageController.java sendErrorMessage cross site scriptingHealth Information SoftwareNot DefinedOfficial Fix0.000910.00CVE-2020-36636
12/27/20224.44.3OpenMRS Admin UI Module Manage Privilege Page privilege.gsp cross site scriptingHealth Information SoftwareNot DefinedOfficial Fix0.000860.10CVE-2021-4292
12/27/20224.44.3OpenMRS Admin UI Module location.gsp cross site scriptingHealth Information SoftwareNot DefinedOfficial Fix0.000860.05CVE-2021-4291
12/27/20224.14.1OpenMRS Appointment Scheduling Module AppointmentTypeValidator.java validateFieldName cross site scriptingAppointment SoftwareNot DefinedOfficial Fix0.000790.00CVE-2020-36635
12/27/20224.44.3OpenMRS openmrs-module-referenceapplication User App Page UserAppPageController.java post cross site scriptingHealth Information SoftwareNot DefinedOfficial Fix0.001070.05CVE-2021-4289
12/27/20224.44.3OpenMRS openmrs-module-referenceapplication userApp.gsp cross site scriptingHealth Information SoftwareNot DefinedOfficial Fix0.000860.14CVE-2021-4288
12/27/20224.44.3OpenMRS HTML Form Entry UI Framework Integration Module cross site scriptingHealth Information SoftwareNot DefinedOfficial Fix0.001070.05CVE-2021-4284
12/24/20224.44.3OpenMRS Appointment Scheduling Module Notes AppointmentRequest.java getNotes cross site scriptingAppointment SoftwareNot DefinedOfficial Fix0.000800.05CVE-2022-4727
05/10/20226.36.3OpenMRS Reference Application Standalone Edition GET Request sql injectionHealth Information SoftwareNot DefinedNot Defined0.001880.00CVE-2021-43094

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!