Security Advisory

CVE-2020-5732

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-17 18:27:00

Last updated 2024-08-04 08:39:25

Assigner tenable

State PUBLISHED

Description

In OpenMRS 2.9 and prior, he import functionality of the Data Exchange Module does not properly redirect to a login page when an unauthenticated user attempts to access it. This allows unauthenticated users to use a feature typically restricted to administrators.

← Browse all CVEs View on cve.org ↗