CVE-2025-2480

High CVSS: 8.4

Santesoft Sante DICOM Viewer Pro is vulnerable to an out-of-bounds write, which requires a user to open a malicious DCM file, resulting in execution of arbitrary code by a local attacker.

Vendor

Santesoft

Product

Dicom Viewer Pro

CWE

CWE-787

Yayın Tarihi

2025-03-20 17:15:38

Güncelleme

2025-10-16 20:08:41

Source Identifier

ics-cert@hq.dhs.gov

KEV Date Added

Kategoriler

CWE-787 Dicom Viewer Pro HIGH Santesoft 2025

Referanslar

https://santesoft.com/win/sante-dicom-viewer-pro/download.html https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-079-01

Benzer Kayıtlar

High

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows r…

High

CVE-2025-53948

The Sante PACS Server allows a remote attacker to crash the main thread by sending a crafted HL7 message, causing a deni…

Critical

CVE-2025-54156

The Sante PACS Server Web Portal sends credential information without encryption.

Medium

CVE-2025-54759

Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirectin…

Medium

CVE-2025-54862

Sante PACS Server web portal is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes…

High

CVE-2025-5481

Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allo…