image: shutterstock

OpenEMR security flaws could have exposed millions of patient records

August 8, 2018

Via: ZDNet

The health records of millions of patients worldwide were potentially left open to attack by a slew of critical vulnerabilities uncovered by a single cybersecurity team.

OpenEMR is a popular, open-source software solution for the management of millions of electronic patient records worldwide. However, the software, until recently, also contained over 20 severe security issues.

Discovered by Project Insecurity and disclosed in a security advisory (.PDF), the team said the bugs included multiple instances of SQL injection flaws, multiple security problems which could lead to remote code execution, and vulnerabilities leading to unauthenticated information disclosure.

Read More on ZDNet