Malaterre

Grassroots Dicom

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1

CVE-2025-53619

  • EPSS 0.04%
  • Veröffentlicht 16.12.2025 21:32:55
  • Zuletzt bearbeitet 02.01.2026 14:57:53

An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerabili...

9.1

CVE-2025-53618

  • EPSS 0.04%
  • Veröffentlicht 16.12.2025 21:32:54
  • Zuletzt bearbeitet 02.01.2026 14:58:14

An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerabili...

7.5

CVE-2025-52582

Exploit
  • EPSS 0.05%
  • Veröffentlicht 16.12.2025 21:32:53
  • Zuletzt bearbeitet 02.01.2026 14:35:57

An out-of-bounds read vulnerability exists in the Overlay::GrabOverlayFromPixelData functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulne...

9.1

CVE-2025-48429

Exploit
  • EPSS 0.06%
  • Veröffentlicht 16.12.2025 21:32:51
  • Zuletzt bearbeitet 07.01.2026 22:28:57

An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to leaking heap data. An attacker can provide a malicious file to trigger this vulnerability.

9.8

CVE-2024-22391

Exploit
  • EPSS 0.23%
  • Veröffentlicht 25.04.2024 15:16:04
  • Zuletzt bearbeitet 16.12.2025 19:17:44

A heap-based buffer overflow vulnerability exists in the LookupTable::SetLUT functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trig...

6.5

CVE-2024-25569

Exploit
  • EPSS 0.14%
  • Veröffentlicht 25.04.2024 15:16:04
  • Zuletzt bearbeitet 04.11.2025 18:15:52

An out-of-bounds read vulnerability exists in the RAWCodec::DecodeBytes functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to an out-of-bounds read. An attacker can provide a malicious file to trigger t...

9.8

CVE-2024-22373

Exploit
  • EPSS 0.2%
  • Veröffentlicht 25.04.2024 15:16:03
  • Zuletzt bearbeitet 16.12.2025 19:17:37

An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious ...

8.2

CVE-2015-8397

Exploit
  • EPSS 2.06%
  • Veröffentlicht 12.01.2016 20:59:03
  • Zuletzt bearbeitet 21.08.2025 18:06:34

The JPEGLSCodec::DecodeExtent function in MediaStorageAndFileFormat/gdcmJPEGLSCodec.cxx in Grassroots DICOM (aka GDCM) before 2.6.2 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (application ...

10

CVE-2015-8396

Exploit
  • EPSS 23.52%
  • Veröffentlicht 12.01.2016 20:59:02
  • Zuletzt bearbeitet 21.08.2025 18:06:34

Integer overflow in the ImageRegionReader::ReadIntoBuffer function in MediaStorageAndFileFormat/gdcmImageRegionReader.cxx in Grassroots DICOM (aka GDCM) before 2.6.2 allows attackers to execute arbitrary code via crafted header dimensions in a DICOM ...