Lucene search
+L

29 matches found

euvd
euvd
added 2026/07/01 12:34 a.m.17 views

EUVD-2026-40421

An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Against storescp in its default single-process mode, memory grows quickly and the service is eventually killed, after which it stops accepting connections until an operator restarts it...

8.7CVSS5.9AI score0.00379EPSS
Exploits0References4
nvd
nvd
added 2026/06/30 10:16 p.m.10 views

CVE-2026-50254

An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Against storescp in its default single-process mode, memory grows quickly and the service is eventually killed, after which it stops accepting connections until an operator restarts it...

8.7CVSS0.00379EPSS
Exploits0References3
osv
osv
added 2026/06/30 10:16 p.m.6 views

DEBIAN-CVE-2026-50254

An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Against storescp in its default single-process mode, memory grows quickly and the service is eventually killed, after which it stops accepting connections until an operator restarts it...

8.7CVSS6AI score0.00379EPSS
Exploits0References1
debiancve
debiancve
added 2026/06/30 9:14 p.m.6 views

CVE-2026-50254

An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Against storescp in its default single-process mode, memory grows quickly and the service is eventually killed, after which it stops accepting connections until an operator restarts it...

8.7CVSS6AI score0.00379EPSS
Exploits0
cve
cve
added 2026/06/30 9:14 p.m.34 views

CVE-2026-50254

CVE-2026-50254 affects the DCMTK toolkit’s storescp component. An unauthenticated remote attacker can repeatedly send a crafted connection request, causing a memory leak that grows quickly in the default single-process mode, ultimately killing the service and requiring an operator to restart it. ...

8.7CVSS5.9AI score0.00379EPSS
Exploits0References3
cvelist
cvelist
added 2026/06/30 9:14 p.m.35 views

CVE-2026-50254 OFFIS DCMTK Toolkit Missing Release of Memory after Effective Lifetime

An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Against storescp in its default single-process mode, memory grows quickly and the service is eventually killed, after which it stops accepting connections until an operator restarts it...

8.7CVSS0.00379EPSS
Exploits0References3
osv
osv
added 2026/06/30 9:14 p.m.4 views

CVE-2026-50254 OFFIS DCMTK Toolkit Missing Release of Memory after Effective Lifetime

An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Against storescp in its default single-process mode, memory grows quickly and the service is eventually killed, after which it stops accepting connections until an operator restarts it...

8.7CVSS6AI score0.00379EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/06/30 12:0 a.m.10 views

PT-2026-53993

Name of the Vulnerable Software and Affected Versions storescp affected versions not specified Description An unauthenticated remote attacker can cause a memory leak by repeatedly sending a single crafted connection request. When storescp operates in its default single-process mode, memory...

8.7CVSS6AI score0.00379EPSS
Exploits0References7
susecve
susecve
added 2026/04/07 11:29 p.m.8 views

SUSE CVE-2026-5663

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

9.8CVSS5.5AI score0.01721EPSS
Exploits0References3
euvd
euvd
added 2026/04/06 3:31 p.m.6 views

EUVD-2026-19243

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

7.5CVSS6.7AI score0.01721EPSS
Exploits0References7
nvd
nvd
added 2026/04/06 3:17 p.m.6 views

CVE-2026-5663

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

9.8CVSS0.01721EPSS
Exploits0References6
ubuntucve
ubuntucve
added 2026/04/06 3:17 p.m.4 views

CVE-2026-5663

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

9.8CVSS5.7AI score0.01721EPSS
Exploits0References7
osv
osv
added 2026/04/06 3:17 p.m.8 views

UBUNTU-CVE-2026-5663

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

9.8CVSS5.5AI score0.01721EPSS
Exploits0References8
debiancve
debiancve
added 2026/04/06 2:15 p.m.8 views

CVE-2026-5663

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

9.8CVSS6.9AI score0.01721EPSS
Exploits0
cve
cve
added 2026/04/06 2:15 p.m.29 views

CVE-2026-5663

OFFIS DCMTK up to 3.7.0 contains a vulnerability in the storescp component (dcmnet/apps/storescp.cc: executeOnReception/executeOnEndOfStudy) that allows os command injection through manipulation. Remote exploitation is possible. A patch (edbb085e45788dccaf0e64d71534cfca925784b8) is available and ...

9.8CVSS6.7AI score0.01721EPSS
Exploits0References6Affected Software1
cvelist
cvelist
added 2026/04/06 2:15 p.m.34 views

CVE-2026-5663 OFFIS DCMTK storescp storescp.cc executeOnEndOfStudy os command injection

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

7.5CVSS0.01721EPSS
Exploits0References6
osv
osv
added 2026/04/06 2:15 p.m.4 views

CVE-2026-5663 OFFIS DCMTK storescp storescp.cc executeOnEndOfStudy os command injection

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

6.9CVSS6.7AI score0.01721EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/04/06 12:0 a.m.11 views

PT-2026-30606

Name of the Vulnerable Software and Affected Versions OFFIS DCMTK versions up to 3.7.0 Description A security flaw exists in OFFIS DCMTK up to version 3.7.0. The issue affects the executeOnReception/executeOnEndOfStudy function within the dcmnet/apps/storescp.cc file of the storescp component...

7.5CVSS7AI score0.01721EPSS
Exploits0References11
nessus
nessus
added 2026/04/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-5663

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file...

9.8CVSS6.7AI score0.01721EPSS
Exploits0References3
susecve
susecve
added 2023/02/15 5:10 a.m.4 views

SUSE CVE-2015-8979

Stack-based buffer overflow in the parsePresentationContext function in storescp in DICOM dcmtk-3.6.0 and earlier allows remote attackers to cause a denial of service segmentation fault via a long string sent to TCP port 4242...

7.5CVSS7.4AI score0.03906EPSS
Exploits2References3
Rows per page
Query Builder