CVE-2025-53854 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premium 7.3.6.870. A specially crafted maliciou…
Medium CVSS: 6.1

CVE-2025-53854

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability.
Vendor
Meddream
Product
Pacs Server
CWE
CWE-79
Yayın Tarihi
2026-01-20 15:16:59
Güncelleme
2026-01-29 15:24:06
Source Identifier
talos-cna@cisco.com
KEV Date Added
-

Kategoriler

CWE-79 Pacs Server MEDIUM Meddream 2026

Referanslar

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2265 https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2265