Security Advisory
CVE-2018-1000646
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
LibreHealthIO LH-EHR version REL-2.0.0 contains an Authenticated Unrestricted File Write vulnerability in Import template that can result in write files with malicious content and may lead to remote code execution.