CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Tenable Nessus•added 2026/04/28 12:0 a.m.•1 views

Fedora 44 : python-pydicom (2026-9eecdef4e0)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-9eecdef4e0 advisory. Patch release for security advisory CVE-2026-32711. A crafted DICOMDIR could create a path traversal by setting ReferencedFileID to a path outside the File-s...

7.8CVSS5.4AI score0.00008EPSS

Exploits1References2

OPENSUSE Linux•added 2026/03/27 12:0 a.m.•3 views

Security update for python-pydicom (important)

openSUSE Security Update: Security update for python-pydicom Announcement ID: openSUSE-SU-2026:0102-1 Rating: important References: 1259973 Cross-References: CVE-2026-32711 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: This...

7.8CVSS5.9AI score0.00008EPSS

Exploits1References1

OSV•added 2026/03/20 3:57 p.m.•1 views

GHSA-V856-2RF8-9F28 pydicom has a path traversal in FileSet/DICOMDIR ReferencedFileID allows file access outside the File-set root

Summary A crafted DICOMDIR can set ReferencedFileID to a path outside the File-set root. pydicom resolves the path only to confirm that it exists, but does not verify that the resolved path remains under the File-set root. Subsequent public FileSet operations such as copy, write, and...

7.8CVSS6AI score0.00008EPSS

Exploits1References5

OSV•added 2026/03/20 2:16 a.m.•2 views

DEBIAN-CVE-2026-32711

pydicom is a pure Python package for working with DICOM files. Versions 2.0.0-rc.1 through 3.0.1 are vulnerable to Path Traversal through a maliciously crafted DICOMDIR ReferencedFileID when it is set to a path outside the File-set root. pydicom resolves the path only to confirm that it exists, b...

7.8CVSS5.5AI score0.00008EPSS

Exploits1References1