Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/06/30 9:27 p.m.31 views

CVE-2026-50003 OFFIS DCMTK Toolkit Path Traversal

A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files outside the chosen output directory, using both relative ../ paths and absolute paths...

9.8CVSS0.00435EPSS
Exploits0References3
OSV
OSV
added 2025/10/21 3:15 p.m.4 views

UBUNTU-CVE-2022-4981

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...

5.5CVSS5.3AI score0.00255EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-21343

Malicious code in bioql PyPI...

4CVSS6.8AI score0.00193EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-21342

Malicious code in bioql PyPI...

4CVSS6.8AI score0.00193EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-9732

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library dcmimage/include/dcmtk/dcmimage/diybrpxt.h of the component...

7.8CVSS5.6AI score0.00158EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/13 12:0 a.m.6 views

OFFIS DCMTK 安全漏洞

OFFIS DCMTK is a collection of libraries and applications that implement most of the DICOM standards from OFFIS Germany. Software for inspecting, building and converting DICOM image files, processing offline media, sending and receiving images over a network connection, as well as a demo image...

8.4CVSS6.9AI score0.0061EPSS
Exploits1References2
OSV
OSV
added 2022/06/28 1:15 p.m.2 views

UBUNTU-CVE-2021-41688

DCMTK through 3.6.6 does not handle memory free properly. The object in the program is free but its address is still used in other locations. Sending specific requests to the dcmqrdb program will incur a double free. An attacker can use it to launch a DoS attack...

7.5CVSS6.9AI score0.01595EPSS
Exploits0References7
Rows per page
Query Builder