Lucene search
+L

36 matches found

cvelist
cvelist
added 2026/06/25 8:46 p.m.26 views

CVE-2026-56445 pydicom pynetdicom Library Path Traversal

The qrscp application's C-STORE handler uses a specific instance from attacker-supplied DICOM datasets directly in os.path.join without sanitization, allowing file writes to arbitrary paths...

9.1CVSS0.00434EPSS
Exploits0References3
osv
osv
added 2026/06/25 8:46 p.m.4 views

CVE-2026-56445 pydicom pynetdicom Library Path Traversal

The qrscp application's C-STORE handler uses a specific instance from attacker-supplied DICOM datasets directly in os.path.join without sanitization, allowing file writes to arbitrary paths...

8.8CVSS6AI score0.00434EPSS
Exploits0References5
cve
cve
added 2026/06/25 8:46 p.m.15 views

CVE-2026-56445

The CVE-2026-56445 issue affects the qrscp application’s C-STORE handler. It directly uses an attacker-supplied DICOM dataset instance in os.path.join() without sanitization, enabling writes to arbitrary file paths on the system. This is a path traversal vulnerability in the file-write path, with...

9.1CVSS6AI score0.00434EPSS
Exploits0References3
ics
ics
added 2026/06/25 6:0 a.m.15 views

pydicom pynetdicom Library

ADVISORY SUMMARY Successful exploitation of this vulnerability could allow an unauthenticated attacker to write to arbitrary file paths. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure...

9.1CVSS6AI score0.00434EPSS
Exploits0References11
nessus
nessus
added 2026/04/28 12:0 a.m.4 views

Fedora 44 : python-pydicom (2026-9eecdef4e0)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-9eecdef4e0 advisory. Patch release for security advisory CVE-2026-32711. A crafted DICOMDIR could create a path traversal by setting ReferencedFileID to a path outside the File-s...

7.8CVSS5.4AI score0.00279EPSS
Exploits1References2
fedora
fedora
added 2026/04/25 1:53 a.m.5 views

[SECURITY] Fedora 44 Update: python-pydicom-3.0.2-1.fc44

pydicom is a pure python package for working with DICOM files. It was made for inspecting and modifying DICOM data in an easy "pythonic" way. The modifications can be written again to a new file. pydicom is not a DICOM server, and is not primarily about viewing images. It is designed to let you...

7.8CVSS5.3AI score0.00279EPSS
Exploits1
fedora
fedora
added 2026/04/09 3:37 a.m.6 views

[SECURITY] Fedora 42 Update: python-pydicom-3.0.2-1.fc42

pydicom is a pure python package for working with DICOM files. It was made for inspecting and modifying DICOM data in an easy "pythonic" way. The modifications can be written again to a new file. pydicom is not a DICOM server, and is not primarily about viewing images. It is designed to let you...

7.8CVSS5.9AI score0.00279EPSS
Exploits1
fedora
fedora
added 2026/04/09 3:22 a.m.6 views

[SECURITY] Fedora 43 Update: python-pydicom-3.0.2-1.fc43

pydicom is a pure python package for working with DICOM files. It was made for inspecting and modifying DICOM data in an easy "pythonic" way. The modifications can be written again to a new file. pydicom is not a DICOM server, and is not primarily about viewing images. It is designed to let you...

7.8CVSS5.9AI score0.00279EPSS
Exploits1
openvas
openvas
added 2026/04/09 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2026-f89e555af4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.9AI score0.00279EPSS
Exploits1References4
nessus
nessus
added 2026/04/09 12:0 a.m.2 views

Fedora 43 : python-pydicom (2026-f5c971af6c)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-f5c971af6c advisory. Patch release for security advisory CVE-2026-32711. A crafted DICOMDIR could create a path traversal by setting ReferencedFileID to a path outside the File-s...

7.8CVSS5.9AI score0.00279EPSS
Exploits1References2
nessus
nessus
added 2026/04/09 12:0 a.m.4 views

Fedora 42 : python-pydicom (2026-f89e555af4)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-f89e555af4 advisory. Patch release for security advisory CVE-2026-32711. A crafted DICOMDIR could create a path traversal by setting ReferencedFileID to a path outside the File-s...

7.8CVSS5.9AI score0.00279EPSS
Exploits1References2
openvas
openvas
added 2026/04/09 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2026-f5c971af6c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.9AI score0.00279EPSS
Exploits1References4
opensuse
opensuse
added 2026/03/27 12:0 a.m.4 views

Security update for python-pydicom (important)

openSUSE Security Update: Security update for python-pydicom Announcement ID: openSUSE-SU-2026:0102-1 Rating: important References: 1259973 Cross-References: CVE-2026-32711 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: This...

7.8CVSS5.9AI score0.00279EPSS
Exploits1References1
opensuse
opensuse
added 2026/03/25 12:0 a.m.5 views

python311-pydicom-3.0.2-1.1 on GA media (moderate)

python311-pydicom-3.0.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10412-1 Rating: moderate Cross-References: CVE-2026-32711 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

7.8CVSS5.8AI score0.00279EPSS
Exploits1
osv
osv
added 2026/03/23 12:0 a.m.3 views

OPENSUSE-SU-2026:10412-1 python311-pydicom-3.0.2-1.1 on GA media

These are all security issues fixed in the python311-pydicom-3.0.2-1.1 package on the GA media of openSUSE Tumbleweed...

7.8CVSS5.8AI score0.00279EPSS
Exploits1References1
susecve
susecve
added 2026/03/22 12:23 a.m.5 views

SUSE CVE-2026-32711

pydicom is a pure Python package for working with DICOM files. Versions 2.0.0-rc.1 through 3.0.1 are vulnerable to Path Traversal through a maliciously crafted DICOMDIR ReferencedFileID when it is set to a path outside the File-set root. pydicom resolves the path only to confirm that it exists, b...

7.8CVSS5.8AI score0.00279EPSS
Exploits1References3
nessus
nessus
added 2026/03/21 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-32711

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pydicom is a pure Python package for working with DICOM files. Versions 2.0.0-rc.1 through 3.0.1 are vulnerable to Path Traversal through a maliciously crafted...

7.8CVSS5.9AI score0.00279EPSS
Exploits1References3
vulnersosv
vulnersosv
added 2026/03/20 3:57 p.m.4 views

axondeepseg (>=5.0.2 <=5.5.0rc2), bids-manager (>=0.1.0 <=1.0.0) +22 more potentially affected by CVE-2026-32711 via pydicom (>=3.0.0rc1 <=3.0.1)

pydicom PYPI version =3.0.0rc1, =5.0.2, =0.1.0, =1.0.0, =0.1.0, =0.1.8, =0.0.8, =0.0.12 and more Source cves: CVE-2026-32711 Source advisory: OSV:GHSA-V856-2RF8-9F28...

7.8CVSS5.4AI score0.00279EPSS
Exploits1
vulnersosv
vulnersosv
added 2026/03/20 3:57 p.m.3 views

axondeepseg (>=5.0.2 <=5.5.0rc2), bids-manager (>=0.1.0 <=1.0.0) +22 more potentially affected by CVE-2026-32711 via pydicom (>=3.0.0rc1 <=3.0.1)

pydicom PYPI version =3.0.0rc1, =5.0.2, =0.1.0, =1.0.0, =0.1.0, =0.1.8, =0.0.8, =0.0.12 and more Source cves: CVE-2026-32711 Source advisory: SNYK:PYTHON-PYDICOM-15756938...

7.8CVSS5.4AI score0.00279EPSS
Exploits1
vulnersosv
vulnersosv
added 2026/03/20 3:57 p.m.5 views

aide-infra (>=0.3.1.2 <=0.3.9), aide-sdk (>=1.0.3 <=1.0.6) +96 more potentially affected by CVE-2026-32711 via pydicom (>=2.0.0 <=2.4.4)

pydicom PYPI version =2.0.0, =0.3.1.2, =1.0.3, =0.1.1, =3.0.0, =0.1.0, =0.1.2, =0.1.0a1, =0.1.3, =0.4.0, =0.2.0, =1.1.0, =0.2.3, =0.0.13, =0.0.17 and more Source cves: CVE-2026-32711 Source advisory: SNYK:PYTHON-PYDICOM-15756938...

7.8CVSS5.7AI score0.00279EPSS
Exploits1
Rows per page
Query Builder