Lucene search
K

175 matches found

Talos
Talos
added 6 days ago6 views

vtk vtk-dicom vtkDICOMItem::FindDataElementOrInsert heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the vtkDICOMItem::FindDataElementOrInsert functionality of vtk-dicom versions: 9.5.2. A specially crafted DICOM file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.4AI score0.0032EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in dcmtk

A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service DoS attack through a malicious DCM file...

5.3CVSS6.7AI score0.00322EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in gdcm

There is an out-of-bounds read vulnerability in the RAWCodec::DecodeBytes functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to an out-of-bounds read. An attacker can provide a malicious file to exploit this vulnerability...

6.5CVSS5.3AI score0.01083EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.8 views

Astra Linux – Vulnerability in dcmtk

There is an improper array index validation vulnerability in the nowindow functionality of OFFIS DCMT 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to exploit this vulnerability...

8.4CVSS6.9AI score0.0061EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in dcmtk

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service DoS attack through a crafted DICOM file...

7.5CVSS6.6AI score0.00527EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in gdcm

There is an out-of-bounds write vulnerability in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to exploit this vulnerability...

9.8CVSS8.1AI score0.01474EPSS
Exploits1References2
NVD
NVD
added 2026/04/09 3:16 p.m.9 views

CVE-2026-5444

A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation,...

7.1CVSS0.00162EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/09 3:16 p.m.8 views

CVE-2026-5444

A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation,...

7.1CVSS6AI score0.00162EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/09 2:42 p.m.1 views

CVE-2026-5444 Heap Buffer Overflow in PAM Image Buffer Allocation

A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation,...

6AI score0.00162EPSS
Exploits0References3
NVD
NVD
added 2026/02/20 11:16 p.m.15 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS0.00319EPSS
Exploits0References1
OSV
OSV
added 2026/02/20 11:16 p.m.4 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.3AI score0.00319EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/20 10:12 p.m.4 views

CVE-2026-2034 Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS7.8AI score0.00319EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/20 10:12 p.m.6 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.4AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/02/20 10:12 p.m.14 views

CVE-2026-2034

The CVE-2026-2034 case concerns Sante DICOM Viewer Pro. A fault in parsing DCM files arises from insufficient validation of the length of user-supplied data before copying to a buffer, enabling remote code execution when a user opens a malicious file or visits a crafted page. The impact is a remo...

7.8CVSS7.8AI score0.00319EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:12 a.m.8 views

CVE-2019-11687

An issue was discovered in the DICOM Part 10 File Format in the NEMA DICOM Standard 1995 through 2019b and continuing in current implementations. The 128-byte preamble of a DICOM file that complies with this specification can contain arbitrary executable headers for multiple operating systems,...

9.3CVSS7.8AI score0.02751EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2026/01/05 2:1 a.m.5 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/12/22 12:54 p.m.5 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/17 10:8 p.m.6 views

CVE-2025-53619

An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.The function nullconvert is called based of...

9.1CVSS6.6AI score0.00232EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/17 12:31 a.m.4 views

EUVD-2025-203851

An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to leaking heap data. An attacker can provide a malicious file to trigger this vulnerability...

7.4CVSS6.4AI score0.00294EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-53618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to...

9.1CVSS5.8AI score0.00214EPSS
Exploits0References3
Rows per page
Query Builder