CVE-2025-54814 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopurgeFilter functionality of MedDream PACS Premium 7.3.6.870. A specially crafted m…
Medium CVSS: 6.1

CVE-2025-54814

A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopurgeFilter functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability.
Vendor
Meddream
Product
Pacs Server
CWE
CWE-79
Yayın Tarihi
2026-01-20 15:17:02
Güncelleme
2026-01-29 15:21:04
Source Identifier
talos-cna@cisco.com
KEV Date Added
-

Kategoriler

CWE-79 Pacs Server MEDIUM Meddream 2026

Referanslar

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2261 https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2261