CVE-2022-4981
- EPSS 0.26%
- Veröffentlicht 21.10.2025 15:15:37
- Zuletzt bearbeitet 29.04.2026 01:00:01
A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to...
CVE-2020-36855
- EPSS 0.22%
- Veröffentlicht 21.10.2025 15:15:36
- Zuletzt bearbeitet 29.04.2026 01:00:01
A security vulnerability has been detected in DCMTK up to 3.6.5. The affected element is the function parseQuota of the component dcmqrscp. The manipulation of the argument StorageQuota leads to stack-based buffer overflow. Local access is required t...
CVE-2025-9732
- EPSS 0.16%
- Veröffentlicht 31.08.2025 14:02:06
- Zuletzt bearbeitet 05.09.2025 20:21:46
A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library dcmimage/include/dcmtk/dcmimage/diybrpxt.h of the component dcm2img. Such manipulation leads to memory corruption. Local access is required to approa...
CVE-2025-2357
- EPSS 0.39%
- Veröffentlicht 17.03.2025 01:31:04
- Zuletzt bearbeitet 03.11.2025 20:18:08
A vulnerability was found in DCMTK 3.6.9. It has been declared as critical. This vulnerability affects unknown code of the component dcmjpls JPEG-LS Decoder. The manipulation leads to memory corruption. The attack can be initiated remotely. The explo...
CVE-2025-25472
- EPSS 0.32%
- Veröffentlicht 18.02.2025 23:15:10
- Zuletzt bearbeitet 04.11.2025 20:31:41
A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.
CVE-2025-25475
- EPSS 0.53%
- Veröffentlicht 18.02.2025 23:15:10
- Zuletzt bearbeitet 04.11.2025 20:40:26
A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.
CVE-2025-25474
- EPSS 0.31%
- Veröffentlicht 18.02.2025 23:15:10
- Zuletzt bearbeitet 04.11.2025 20:33:27
DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.
CVE-2024-52333
- EPSS 0.61%
- Veröffentlicht 13.01.2025 15:15:09
- Zuletzt bearbeitet 03.11.2025 21:17:21
An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerabili...
CVE-2024-47796
- EPSS 0.61%
- Veröffentlicht 13.01.2025 15:15:08
- Zuletzt bearbeitet 03.11.2025 21:16:30
An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.
CVE-2024-27628
- EPSS 0.73%
- Veröffentlicht 28.06.2024 19:15:05
- Zuletzt bearbeitet 11.06.2025 15:22:56
Buffer Overflow vulnerability in DCMTK v.3.6.8 allows an attacker to execute arbitrary code via the EctEnhancedCT method component.