HIGH🇬🇧 English

CVE-2024-28877

CVSS 8.7v4.0pub. 2024-06-11upd. 2025-04-10

MicroDicom DICOM Viewer is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code on affected installations of DICOM Viewer. User interaction is required to exploit this vulnerability.

oryginał EN
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Microdicom Dicom Viewer

    APP
    Microdicom
    < 2024.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEMemory
CWE
Referencje

Powiązane podatności

CVE-2024-33606HIGH8.6ten sam produkt

An attacker could retrieve sensitive files (medical images) as well as plant new medical images or overwrite e...

CVE-2024-22100HIGH7.8ten sam produkt

MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior are affected by a heap-based buffer overfl...

CVE-2024-25578HIGH7.8ten sam produkt

MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior contain a lack of proper validation of user-...

CVE-2025-1002MEDIUM5.7ten sam produkt

MicroDicom DICOM Viewer version 2024.03 fails to adequately verify the update server's certificate, which cou...

CVE-2024-28877 — HIGH 8.7 | CVEbaza.pl