Lucene search
K
MicrodicomDicom Viewer

5 matches found

CVE
CVE
added 2024/03/01 12:37 a.m.102 views

CVE-2024-22100

CVE-2024-22100 affects MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior. The vulnerability is a heap-based buffer overflow in the viewer when processing a malicious DCM file, enabling arbitrary code execution after user opens the file (local attack surface; UI interaction required)....

7.8CVSS8AI score0.00264EPSS
CVE
CVE
added 2024/03/01 12:40 a.m.86 views

CVE-2024-25578

CVE-2024-25578 affects MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and earlier, due to a lack of proper validation of user-supplied data that could lead to memory corruption. The ICS/CISA advisory lists an Out-of-Bounds Write vulnerability (CWE-787) with a CVSS v3.1 base score of 7.8 (lo...

7.8CVSS7.8AI score0.00241EPSS
CVE
CVE
added 2025/02/10 8:32 p.m.78 views

CVE-2025-1002

CVE-2025-1002 affects MicroDicom DICOM Viewer 2024.03 and stems from an inadequate verification of the update server’s certificate. The underlying issue could allow an attacker with a privileged network position to perform a man‑in‑the‑middle (MITM) attack, alter the server’s response, and delive...

5.7CVSS5.5AI score0.00106EPSS
CVE
CVE
added 2024/06/11 8:15 p.m.70 views

CVE-2024-28877

CVE-2024-28877 affects MicroDicom DICOM Viewer, which is vulnerable to a stack-based buffer overflow in the DICOM Viewer component. The underlying issue could allow arbitrary code execution on affected installations, with user interaction required to exploit. The ICS/CISA advisory and related sou...

8.8CVSS8.9AI score0.00686EPSS
CVE
CVE
added 2024/06/11 8:17 p.m.56 views

CVE-2024-33606

CVE-2024-33606 affects MicroDicom DICOM Viewer prior to version 2024.2. The issue is Improper Authorization in the Handler for the Custom URL Scheme, enabling an attacker to retrieve sensitive medical images and to plant or overwrite images on the victim’s system. Exploitation requires user inter...

8.8CVSS8.6AI score0.00465EPSS