Description
Medplum before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that allows authenticated users to perform unauthorized internal network requests by creating FHIR Subscription resources with arbitrary endpoint URLs. Attackers can point subscription endpoints at internal addresses such as cloud instance metadata services, internal databases, or container orchestration endpoints to exfiltrate IAM credentials and patient health records via the POST body containing full FHIR resource payloads.
Published: 2026-06-02
Score: 6.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Medplum deployments before 5.1.14 contain a server‑side request forgery flaw in the subscription worker that lets an authenticated user create FHIR Subscription resources with any endpoint URL. When the subscription fires, the worker makes an HTTP request to that URL and includes the full POST body, which contains the entire FHIR payload. Per the description, an attacker can target internal services such as cloud instance metadata, internal databases or orchestration endpoints, thereby exfiltrating IAM credentials and patient health records.

Affected Systems

The affected product is Medplum, specifically all releases prior to version 5.1.14. Any instance that has not yet applied this update is within the risk window and is vulnerable to SSRF via subscription resources.

Risk and Exploitability

The CVSS base score of 6.3 indicates a moderate severity; the EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. Because the flaw requires authenticated access to create subscription resources, the attack vector is internal to the application: a legitimate user can exploit it by submitting a specially crafted subscription, which the server then forwards to arbitrary internal systems. Successful exploitation could allow the adversary to read or write data from internal services and exfiltrate sensitive data contained in the POST body.

Generated by OpenCVE AI on June 3, 2026 at 04:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Medplum to the 5.1.14 release or later to apply the vendor patch.
  • Validate or whitelist subscription endpoint URLs to reject internal or non‑public addresses.
  • Configure network segmentation or firewall rules to block outbound traffic from the subscription worker to internal metadata or orchestration services.
  • Monitor application logs for unexpected subscription creations or outbound requests and investigate any anomalies.

Generated by OpenCVE AI on June 3, 2026 at 04:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Description Medplum before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that allows authenticated users to perform unauthorized internal network requests by creating FHIR Subscription resources with arbitrary endpoint URLs. Attackers can point subscription endpoints at internal addresses such as cloud instance metadata services, internal databases, or container orchestration endpoints to exfiltrate IAM credentials and patient health records via the POST body containing full FHIR resource payloads.
Title Medplum < 5.1.14 SSRF via FHIR Subscription Endpoint
Weaknesses CWE-918
References
Metrics cvssV3_1

{'score': 8.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N'}

cvssV4_0

{'score': 6.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:H/SI:L/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-02T18:05:09.825Z

Reserved: 2026-05-27T17:40:12.737Z

Link: CVE-2026-49120

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-02T20:16:39.503

Modified: 2026-06-02T20:16:39.503

Link: CVE-2026-49120

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-03T04:30:05Z

Weaknesses