Lucene search
K

22 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in gdcm

There is an out-of-bounds read vulnerability in the RAWCodec::DecodeBytes functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to an out-of-bounds read. An attacker can provide a malicious file to exploit this vulnerability...

6.5CVSS6.6AI score0.01074EPSS
Exploits1References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in gdcm

There is an out-of-bounds write vulnerability in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to exploit this vulnerability...

9.8CVSS8.1AI score0.01462EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/01/05 2:1 a.m.6 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/12/22 12:54 p.m.6 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/17 10:8 p.m.8 views

CVE-2025-53619

An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.The function nullconvert is called based of...

9.1CVSS6.6AI score0.00232EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/17 12:31 a.m.5 views

EUVD-2025-203851

An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to leaking heap data. An attacker can provide a malicious file to trigger this vulnerability...

7.4CVSS6.4AI score0.00294EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-48429

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to...

9.1CVSS5.8AI score0.00294EPSS
Exploits1References3
OSV
OSV
added 2025/12/16 10:15 p.m.4 views

DEBIAN-CVE-2025-52582

An out-of-bounds read vulnerability exists in the Overlay::GrabOverlayFromPixelData functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS5.4AI score0.00282EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/16 9:32 p.m.2 views

CVE-2025-53618

An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.The function grayscaleconvert is called base...

7.4CVSS6.3AI score0.00214EPSS
Exploits0References1
Talos
Talos
added 2025/12/16 12:0 a.m.6 views

Grassroot DICOM Overlay::GrabOverlayFromPixelData out-of-bounds read vulnerability

Talos Vulnerability Report TALOS-2025-2211 Grassroot DICOM Overlay::GrabOverlayFromPixelData out-of-bounds read vulnerability December 16, 2025 CVE Number CVE-2025-52582 SUMMARY An out-of-bounds read vulnerability exists in the Overlay::GrabOverlayFromPixelData functionality of Grassroot DICOM...

7.5CVSS6.7AI score0.00282EPSS
Exploits1
Talos
Talos
added 2025/12/16 12:0 a.m.6 views

Grassroot DICOM JPEGBITSCodec::InternalCode out-of-bounds read vulnerability

Talos Vulnerability Report TALOS-2025-2210 Grassroot DICOM JPEGBITSCodec::InternalCode out-of-bounds read vulnerability December 16, 2025 CVE Number CVE-2025-53619,CVE-2025-53618 SUMMARY An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM...

9.1CVSS6.5AI score0.00232EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/12 8:48 p.m.4 views

CVE-2025-11266

An out-of-bounds write vulnerability exists in the Grassroots DICOM library GDCM. The issue is triggered during parsing of a malformed DICOM file containing encapsulated PixelData fragments compressed image data stored as multiple fragments. This vulnerability leads to a segmentation fault caused...

6.8CVSS5.5AI score0.00123EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/12/01 9:5 p.m.4 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability in dcmtk

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service DoS attack through a crafted DICOM file...

7.5CVSS6.6AI score0.00527EPSS
Exploits0References3
OSV
OSV
added 2025/02/18 11:15 p.m.3 views

UBUNTU-CVE-2025-25472

A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service DoS via a crafted DCM file...

5.3CVSS6AI score0.00322EPSS
Exploits0References3
CVE
CVE
added 2025/02/18 12:0 a.m.94 views

CVE-2025-25475

CVE-2025-25475 affects DCMTK v3.6.9+ DEV and is caused by a NULL pointer dereference in /libsrc/dcrleccd.cc, enabling a crafted DICOM file to trigger a Denial of Service. Connected advisories confirm this issue and note fixes in various Linux distros (e.g., Debian DLA-4227, openSUSE SUSE advisory...

7.5CVSS6.8AI score0.00527EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/18 12:0 a.m.7 views

CVE-2025-25475

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service DoS via a crafted DICOM file...

7.2AI score0.00527EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/04/25 11:12 p.m.4 views

SUSE CVE-2024-22373

An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS7.5AI score0.01462EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2024/04/25 11:12 p.m.3 views

SUSE CVE-2024-25569

An out-of-bounds read vulnerability exists in the RAWCodec::DecodeBytes functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to an out-of-bounds read. An attacker can provide a malicious file to trigger this vulnerability...

6.5CVSS6.9AI score0.01074EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2024/04/25 2:33 p.m.34 views

CVE-2024-22373

An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS8AI score0.01462EPSS
Exploits1
Rows per page
Query Builder