CVE-2025-1002
MicroDicom DICOM Viewer version 2024.03
fails to adequately verify the update server's certificate, which could make it possible for attackers in a privileged network position to alter network traffic and carry out a machine-in-the-middle (MITM) attack. This allows the attackers to modify the server's response and deliver a malicious update to the user.
fails to adequately verify the update server's certificate, which could make it possible for attackers in a privileged network position to alter network traffic and carry out a machine-in-the-middle (MITM) attack. This allows the attackers to modify the server's response and deliver a malicious update to the user.
Vendor
Product
CWE
Yayın Tarihi
2025-02-10 21:15:21
Güncelleme
2025-03-03 17:24:28
Source Identifier
ics-cert@hq.dhs.gov
KEV Date Added
-