CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

130 matches found

CVE-2026-12805

A flaw was found in OFFIS DCMTK. A remote attacker could exploit this vulnerability by manipulating input to the XMLNode::parseFile function. This can lead to a heap-based buffer overflow, a type of memory corruption, which may result in information disclosure or denial of service. Mitigation Use...

7.5CVSS6.1AI score0.00279EPSS

Exploits0References11

Tenable Nessus•added 5 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-12805

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in OFFIS DCMTK up to 3.7.0. The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc. Executing a...

7.5CVSS6.3AI score0.00279EPSS

Exploits0References3

OSV•added 6 days ago•2 views

DEBIAN-CVE-2026-12805

A flaw has been found in OFFIS DCMTK up to 3.7.0. The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc. Executing a manipulation can lead to heap-based buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

5.3CVSS5.8AI score0.00279EPSS

Exploits0References1

OSV•added 6 days ago•2 views

UBUNTU-CVE-2026-12805

6.3CVSS6.4AI score0.00279EPSS

Exploits0References3

Cvelist•added 6 days ago•19 views

CVE-2026-12805 OFFIS DCMTK ofxml.cc parseFile heap-based overflow

7.5CVSS0.00279EPSS

Exploits0References8

Vulnrichment•added 6 days ago•3 views

CVE-2026-12805 OFFIS DCMTK ofxml.cc parseFile heap-based overflow

7.5CVSS5.8AI score0.00279EPSS

Exploits0References8

CVE•added 6 days ago•13 views

CVE-2026-12805

The vulnerability CVE-2026-12805 affects OFFIS DCMTK up to 3.7.0, specifically the XMLNode::parseFile function in ofstd/libsrc/ofxml.cc. A heap-based buffer overflow can be triggered remotely via manipulation. An exploit has been published and may be used. The patch is tracked by commit 1d4b3815c...

7.5CVSS6.5AI score0.00279EPSS

Exploits0References8

Debian CVE•added 6 days ago•4 views

CVE-2026-12805

7.5CVSS6.6AI score0.00279EPSS

Exploits0

Positive Technologies•added 6 days ago•13 views

PT-2026-51253

Name of the Vulnerable Software and Affected Versions OFFIS DCMTK versions prior to 3.7.1 Description A heap-based buffer overflow can occur in the XMLNode::parseFile function within the ofstd/libsrc/ofxml.cc library. This issue allows a remote attacker to execute a manipulation that leads to the...

7.5CVSS6.8AI score0.00279EPSS

Exploits0References14

AstraLinux•added 2026/06/19 11:10 a.m.•7 views

Astra Linux – Vulnerability in dcmtk

There is an improper array index validation vulnerability in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to exploit this vulnerability...

8.4CVSS6.9AI score0.0061EPSS

Exploits1References2

AstraLinux•added 2026/06/19 11:10 a.m.•2 views

Astra Linux – Vulnerability in dcmtk

A vulnerability was detected in OFFIS DCMTK up to version 3.6.9. The issue affects the function DcmByteString::makeDicomByteString in the file dcmdata/libsrc/dcbytstr.cc of the dcmdata component. This manipulation can lead to memory corruption. The attack can be launched remotely. Upgrading to...

6.5CVSS6.3AI score0.00233EPSS

Exploits0References2

SUSE CVE•added 2026/06/02 1:44 a.m.•11 views

SUSE CVE-2026-10194

A weakness has been identified in OFFIS DCMTK 3.7.0. This affects the function DcmQueryRetrieveIndexDatabaseHandle::deleteOldestImages of the file dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. Executing a manipulation can lead to heap-based buffer overflow. The attack may be launched...

6.5CVSS6.7AI score0.00247EPSS

Exploits0References3

Tenable Nessus•added 2026/06/01 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2026-10194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A weakness has been identified in OFFIS DCMTK 3.7.0. This affects the function DcmQueryRetrieveIndexDatabaseHandle::deleteOldestImages of the file...

6.5CVSS6.7AI score0.00247EPSS

Exploits0References3

OSV•added 2026/05/31 5:16 p.m.•7 views

UBUNTU-CVE-2026-10194

6.3CVSS6.7AI score0.00247EPSS

Exploits0References3

EUVD•added 2026/05/31 4:30 p.m.•12 views

EUVD-2026-33516

6.5CVSS6.8AI score0.00247EPSS

Exploits0References5

Cvelist•added 2026/05/31 4:30 p.m.•36 views

CVE-2026-10194 OFFIS DCMTK dcmqrscp dcmqrdbi.cc deleteOldestImages heap-based overflow

6.5CVSS0.00247EPSS

Exploits0References5

Vulnrichment•added 2026/05/31 4:30 p.m.•5 views

CVE-2026-10194 OFFIS DCMTK dcmqrscp dcmqrdbi.cc deleteOldestImages heap-based overflow

6.5CVSS6AI score0.00247EPSS

Exploits0References5

ATTACKERKB•added 2026/05/31 4:30 p.m.•10 views

CVE-2026-10194

6.5CVSS6.8AI score0.00247EPSS

Exploits0References6Affected Software1

Debian CVE•added 2026/05/31 4:30 p.m.•15 views

CVE-2026-10194

6.5CVSS6.8AI score0.00247EPSS

Exploits0

CNNVD•added 2026/05/31 12:0 a.m.•7 views

OFFIS DCMTK 安全漏洞

OFFIS DCMTK is a collection of libraries and applications developed by the German company OFFIS that implement most DICOM standards. It includes software for checking, processing, and converting DICOM image files, handling offline media, sending and receiving images via network connections, as we...

6.5CVSS6.7AI score0.00247EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by