Dcmtk@3.6.8 Security Vulnerabilities and Issues — Dcmtk@3.6.8 CVE List

Lucene search

OffisDcmtk3.6.8

4 matches found

CVE•added 2024/04/23 3:15 p.m.•103 views

CVE-2024-28130

An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

7.5CVSS7.2AI score0.00118EPSS

CVE•added 2024/06/28 7:15 p.m.•63 views

CVE-2024-27628

Buffer Overflow vulnerability in DCMTK v.3.6.8 allows an attacker to execute arbitrary code via the EctEnhancedCT method component.

8.1CVSS7.9AI score0.0066EPSS

CVE•added 2025/01/13 3:15 p.m.•49 views

CVE-2024-52333

An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.

8.4CVSS6.8AI score0.00038EPSS

CVE•added 2025/01/13 3:15 p.m.•42 views

CVE-2024-47796

An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.

8.4CVSS6.8AI score0.00038EPSS