CVE-2026-32238 | OpenEMR up to 8.0.0.2 Backup os command injection (GHSA-6pmc-3xm7-pm86)

A vulnerability classified as critical has been found in OpenEMR up to 8.0.0.2. This affects an unknown part of the component Backup Handler. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2026-32238. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More