CVE-2025-25475

Опубликовано: 18 фев. 2025

Источник: redhat

CVSS3: 6.5

EPSS Низкий

Описание

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

A flaw was found in DCMTK. This vulnerability allows attackers to cause a denial of service (DoS) via a crafted DICOM file.

Отчет

Red Hat Product Security has determined that this vulnerability does not affect any currently supported Red Hat product.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux AI (RHEL AI)	dcmtk	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=2346417dcmtk: NULL Pointer Dereference in DCMTK dcrleccd.cc Leading to DoS

EPSS

Процентиль: 50%

0.00269

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2025-25475

CVSS3: 7.5

ubuntu

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

CVE-2025-25475

CVSS3: 7.5

nvd

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

CVE-2025-25475

CVSS3: 7.5

debian

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCM ...

GHSA-rqvx-2c23-x225

CVSS3: 5.3

github

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

openSUSE-SU-2025:0068-1

suse-cvrf

7 месяцев назад

Security update for dcmtk

EPSS

Процентиль: 50%

0.00269

Низкий

6.5 Medium

CVSS3