Lucene search
K

175 matches found

Talos
Talos
added 2026/06/25 12:0 a.m.8 views

vtk vtk-dicom vtkDICOMItem::FindDataElementOrInsert heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the vtkDICOMItem::FindDataElementOrInsert functionality of vtk-dicom versions: 9.5.2. A specially crafted DICOM file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.4AI score0.0032EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in gdcm

There is an out-of-bounds read vulnerability in the RAWCodec::DecodeBytes functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to an out-of-bounds read. An attacker can provide a malicious file to exploit this vulnerability...

6.5CVSS6.6AI score0.01083EPSS
Exploits1References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in gdcm

There is an out-of-bounds write vulnerability in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to exploit this vulnerability...

9.8CVSS8.1AI score0.01474EPSS
Exploits1References2
NVD
NVD
added 2026/04/09 3:16 p.m.9 views

CVE-2026-5444

A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation,...

7.1CVSS0.00162EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/09 3:16 p.m.9 views

CVE-2026-5444

A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation,...

7.1CVSS6AI score0.00162EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/09 2:42 p.m.2 views

CVE-2026-5444 Heap Buffer Overflow in PAM Image Buffer Allocation

A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation,...

6AI score0.00162EPSS
Exploits0References3
OSV
OSV
added 2026/02/20 11:16 p.m.4 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.3AI score0.00319EPSS
Exploits0References1
NVD
NVD
added 2026/02/20 11:16 p.m.15 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS0.00319EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/20 10:12 p.m.4 views

CVE-2026-2034 Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS7.8AI score0.00319EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/20 10:12 p.m.6 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.4AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/02/20 10:12 p.m.18 views

CVE-2026-2034

The CVE-2026-2034 case concerns Sante DICOM Viewer Pro. A fault in parsing DCM files arises from insufficient validation of the length of user-supplied data before copying to a buffer, enabling remote code execution when a user opens a malicious file or visits a crafted page. The impact is a remo...

7.8CVSS7.8AI score0.00319EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:12 a.m.8 views

CVE-2019-11687

An issue was discovered in the DICOM Part 10 File Format in the NEMA DICOM Standard 1995 through 2019b and continuing in current implementations. The 128-byte preamble of a DICOM file that complies with this specification can contain arbitrary executable headers for multiple operating systems,...

9.3CVSS7.8AI score0.02751EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2026/01/05 2:1 a.m.6 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/12/22 12:54 p.m.6 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/17 10:8 p.m.6 views

CVE-2025-53619

An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.The function nullconvert is called based of...

9.1CVSS6.6AI score0.00232EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/17 12:31 a.m.5 views

EUVD-2025-203851

An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to leaking heap data. An attacker can provide a malicious file to trigger this vulnerability...

7.4CVSS6.4AI score0.00294EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-53618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to...

9.1CVSS5.8AI score0.00214EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-48429

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to...

9.1CVSS5.8AI score0.00294EPSS
Exploits1References3
OSV
OSV
added 2025/12/16 10:15 p.m.4 views

DEBIAN-CVE-2025-52582

An out-of-bounds read vulnerability exists in the Overlay::GrabOverlayFromPixelData functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS5.4AI score0.00282EPSS
Exploits1References1
CVE
CVE
added 2025/12/16 9:32 p.m.17 views

CVE-2025-53618

CVE-2025-53618 affects Grassroot DICOM 3.024. An out-of-bounds read in JPEGBITSCodec::InternalCode can leak information when processing a malicious DICOM file; grayscale_convert is invoked based on the file contents. Documents do not provide a remediation or patch details. Exploitation requires a...

9.1CVSS6.3AI score0.00214EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder