Описание
An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.
Ссылки
- Patch
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
EPSS
8.4 High
CVSS3
7.8 High
CVSS3
Дефекты
Связанные уязвимости
An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.
An improper array index validation vulnerability exists in the nowindo ...
An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.
Уязвимость библиотеки для работы с форматом DICOM DCMTK, связанная с выходом операции за границы буфера памяти, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
8.4 High
CVSS3
7.8 High
CVSS3