CVE-2025-46270 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malic…
Medium CVSS: 6.1

CVE-2025-46270

A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability.
Vendor
Meddream
Product
Pacs Server
CWE
CWE-79
Yayın Tarihi
2026-01-20 15:16:25
Güncelleme
2026-01-29 15:23:32
Source Identifier
talos-cna@cisco.com
KEV Date Added
-

Kategoriler

CWE-79 Pacs Server MEDIUM Meddream 2026

Referanslar

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2258 https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2258