AI Finds 38 Security Flaws in Electronic Health Record Platform

Aisle's AI-driven analysis uncovered 38 previously undisclosed vulnerabilities in OpenEMR—ranging from XSS and missing authorization checks to critical SQL injection and path traversal flaws—some of which (notably CVE-2026-24908) could enable large-scale PHI exfiltration and remote code execution; all issues were reported and patched, and OpenEMR has integrated Aisle's scanner into its code-review process.