11 matches found
Astra Linux – Vulnerability in dcmtk
DCMTK through version 3.6.6 does not handle memory deallocation properly. The object in the program is freed, but its address is still used in other locations. Sending specific requests to the dcmqrdb program will lead to a double-free. An attacker can use this vulnerability to launch a DoS attac...
EUVD-2025-27190
Malicious code in bioql PyPI...
PYSEC-2025-141
MONAI Medical Open Network for AI is an AI toolkit for health care imaging. In versions up to and including 1.5.0, in modeldict = torch.loadfullpath, maplocation=torch.devicedevice, weightsonly=True in monai/bundle/scripts.py , weightsonly=True is loaded securely. However, insecure loading method...
MONAI 路径遍历漏洞
MONAI is a medical imaging AI toolkit open-sourced by Project MONAI. A path traversal vulnerability exists in MONAI 1.5.0 and earlier versions, which stems from improper handling of the extractall function and can lead to system file overwrites...
CVE-2025-58757 MONAI's unsafe use of Pickle deserialization may lead to RCE
MONAI Medical Open Network for AI is an AI toolkit for health care imaging. In versions up to and including 1.5.0, the pickleoperations function in monai/data/utils.py automatically handles dictionary key-value pairs ending with a specific suffix and deserializes them using pickle.loads . This...
CVE-2025-58756 MONAI's unsafe torch usage may lead to arbitrary code execution
MONAI Medical Open Network for AI is an AI toolkit for health care imaging. In versions up to and including 1.5.0, in modeldict = torch.loadfullpath, maplocation=torch.devicedevice, weightsonly=True in monai/bundle/scripts.py , weightsonly=True is loaded securely. However, insecure loading method...
DEBIAN-CVE-2025-25472
A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service DoS via a crafted DCM file...
DCMTK Security Vulnerabilities
DCMTK is a collection of libraries and applications that implement most of the DICOM standards from the DCMTK open source. Software for inspecting, building and converting DICOM image files, processing offline media, sending and receiving images over a network connection, and demonstrating image...
Merative Merge DICOM Toolkit 安全漏洞
The Merative Merge DICOM Toolkit is a comprehensive API from Merative that complies with the latest DICOM standards. A security vulnerability exists in Merative Merge DICOM Toolkit C/C++ versions v5.6.0 through v.5.17.0, which stems from a memory access conflict that can be caused when reading an...
SUSE CVE-2024-28130
An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOIPList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...
DCMTK Heap Buffer Overflow Vulnerability
Offis DCMTK is a toolkit from Offis Germany that implements the DICOM Digital Imaging and Communications in Medicine protocol. It contains all the source code, support libraries, and help files, eliminating the need to write the various program modules associated with DICOM-format images. A heap...