Описание
An arbitrary file read vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A specially crafted HTTP request can lead to an arbitrary file read. An attacker can send http request to trigger this vulnerability.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:meddream:pacs_server:7.3.6.870:*:*:*:premium:*:*:*
EPSS
Процентиль: 38%
0.00165
Низкий
9.6 Critical
CVSS3
8.1 High
CVSS3
Дефекты
CWE-73
Связанные уязвимости
CVSS3: 9.6
github
19 дней назад
An arbitrary file read vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A specially crafted HTTP request can lead to an arbitrary file read. An attacker can send http request to trigger this vulnerability.
EPSS
Процентиль: 38%
0.00165
Низкий
9.6 Critical
CVSS3
8.1 High
CVSS3
Дефекты
CWE-73