HIGH🇵🇱 Wersja polska

CVE-2024-25578

CVSS 7.8v3.1pub. 2024-03-01upd. 2025-03-06

MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior contain a lack of proper validation of user-supplied data, which could result in memory corruption within the application.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Microdicom Dicom Viewer

    APP
    Microdicom
    < 2024.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-28877HIGH8.7ten sam produkt

MicroDicom DICOM Viewer is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute...

CVE-2024-33606HIGH8.6ten sam produkt

An attacker could retrieve sensitive files (medical images) as well as plant new medical images or overwrite e...

CVE-2024-22100HIGH7.8ten sam produkt

MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior are affected by a heap-based buffer overfl...

CVE-2025-1002MEDIUM5.7ten sam produkt

MicroDicom DICOM Viewer version 2024.03 fails to adequately verify the update server's certificate, which cou...