CVE-2025-9732

Medium CVSS: 4.8

A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library dcmimage/include/dcmtk/dcmimage/diybrpxt.h of the component dcm2img. Such manipulation leads to memory corruption. Local access is required to approach this attack. The name of the patch is 7ad81d69b. It is best practice to apply a patch to resolve this issue.

Vendor

Offis

Product

Dcmtk

CWE

CWE-119

Yayın Tarihi

2025-08-31 14:15:32

Güncelleme

2025-09-05 20:21:46

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Dcmtk MEDIUM Offis 2025

Referanslar

https://github.com/DCMTK/dcmtk/commit/7ad81d69b https://vuldb.com/?ctiid.322023 https://vuldb.com/?id.322023 https://vuldb.com/?submit.639772 https://github.com/DCMTK/dcmtk/commit/7ad81d69b

Benzer Kayıtlar

Medium

CVE-2022-4981

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeer…

Medium

CVE-2020-36855

A security vulnerability has been detected in DCMTK up to 3.6.5. The affected element is the function parseQuota of the…

Medium

CVE-2025-2357

A vulnerability was found in DCMTK 3.6.9. It has been declared as critical. This vulnerability affects unknown code of t…

Medium

CVE-2025-25472

A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM…

Medium

CVE-2025-25474

DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.

High

CVE-2025-25475

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial…