CVE-2024-28130
published 2024-04-23CVE-2024-28130: An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted…
PriorityP343high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.69%
74.2th percentile
An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | dcmtk | < dcmtk 3.6.7-9~deb12u3 (bookworm) | dcmtk 3.6.7-9~deb12u3 (bookworm) |
| debian | debian_linux | — | — |
| offis | dcmtk | — | — |
| offis | dcmtk | >= 0 < 3.6.5-1+deb11u1 | 3.6.5-1+deb11u1 |
| offis | dcmtk | >= 0 < 3.6.7-9~deb12u3 | 3.6.7-9~deb12u3 |
| offis | dcmtk | >= 0 < 3.6.7-14 | 3.6.7-14 |
| offis | dcmtk | >= 0 < 3.6.7-14 | 3.6.7-14 |
| offis | dcmtk | >= 0 < 3.6.4-2.1ubuntu0.1 | 3.6.4-2.1ubuntu0.1 |
| offis | dcmtk | >= 0 < 3.6.4-2.1ubuntu0.2 | 3.6.4-2.1ubuntu0.2 |
| offis | dcmtk | >= 0 < 3.6.1~20150924-5ubuntu0.1~esm2 | 3.6.1~20150924-5ubuntu0.1~esm2 |
| offis | dcmtk | >= 0 < 3.6.1~20150924-5ubuntu0.1~esm3 | 3.6.1~20150924-5ubuntu0.1~esm3 |
| offis | dcmtk | >= 0 < 3.6.2-3ubuntu0.1~esm2 | 3.6.2-3ubuntu0.1~esm2 |
| offis | dcmtk | >= 0 < 3.6.2-3ubuntu0.1~esm3 | 3.6.2-3ubuntu0.1~esm3 |
| offis | dcmtk | >= 0 < 3.6.6-5ubuntu0.1~esm2 | 3.6.6-5ubuntu0.1~esm2 |
| offis | dcmtk | >= 0 < 3.6.7-9.1ubuntu0.1~esm1 | 3.6.7-9.1ubuntu0.1~esm1 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH
vendor_debian7.5HIGH
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
dcmtk regression
osv·2025-07-08·CVSS 7.5
[HIGH] dcmtk regression
dcmtk regression
USN-7010-1 fixed vulnerabilities in DCMTK. The update introduced a
regression. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Jinsheng Ba discovered that DCMTK incorrectly handled certain requests. If
a user or an automated system were tricked into opening a certain specially
crafted input file, a remote attacker could possibly use this issue to
cause a denial of service. This issue only affected Ubuntu 20.04 LTS.
(CVE-2021-41687, CVE-2021-41688, CVE-2021-41689, CVE-2021-41690)
Sharon Brizinov and Noam Moshe discovered that DCMTK incorrectly handled
pointers. If a user or an automated system were tricked into opening a
certain specially crafted input file, a remote attacker could possibly use
this issue to cause a denial
OSV
dcmtk vulnerabilities
osv·2024-09-17·CVSS 7.5
CVE-2021-41687 [HIGH] dcmtk vulnerabilities
dcmtk vulnerabilities
Jinsheng Ba discovered that DCMTK incorrectly handled certain requests. If
a user or an automated system were tricked into opening a certain specially
crafted input file, a remote attacker could possibly use this issue to
cause a denial of service. This issue only affected Ubuntu 20.04 LTS.
(CVE-2021-41687, CVE-2021-41688, CVE-2021-41689, CVE-2021-41690)
Sharon Brizinov and Noam Moshe discovered that DCMTK incorrectly handled
pointers. If a user or an automated system were tricked into opening a
certain specially crafted input file, a remote attacker could possibly use
this issue to cause a denial of service. This issue only affected
Ubuntu 20.04 LTS. (CVE-2022-2121)
It was discovered that DCMTK incorrectly handled certain inputs. If a
user or an automated system w
GHSA
GHSA-29f8-5v89-7j3x: An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3
ghsa_unreviewed·2024-04-23
CVE-2024-28130 [HIGH] CWE-704 GHSA-29f8-5v89-7j3x: An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3
An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
OSV
CVE-2024-28130: An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3
osv·2024-04-23·CVSS 7.5
CVE-2024-28130 [HIGH] CVE-2024-28130: An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3
An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Ubuntu
DCMTK regression
vendor_ubuntu·2025-07-08·CVSS 7.5
CVE-2021-41687 [HIGH] DCMTK regression
Title: DCMTK regression
Summary: USN-7010-1 introduced a regression in DCMTK
USN-7010-1 fixed vulnerabilities in DCMTK. The update introduced a
regression. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Jinsheng Ba discovered that DCMTK incorrectly handled certain requests. If
a user or an automated system were tricked into opening a certain specially
crafted input file, a remote attacker could possibly use this issue to
cause a denial of service. This issue only affected Ubuntu 20.04 LTS.
(CVE-2021-41687, CVE-2021-41688, CVE-2021-41689, CVE-2021-41690)
Sharon Brizinov and Noam Moshe discovered that DCMTK incorrectly handled
pointers. If a user or an automated system were tricked into opening a
certain specially crafted input file, a rem
Ubuntu
DCMTK vulnerabilities
vendor_ubuntu·2024-09-17·CVSS 7.5
CVE-2021-41688 [HIGH] DCMTK vulnerabilities
Title: DCMTK vulnerabilities
Summary: Several security issues were fixed in DCMTK.
Jinsheng Ba discovered that DCMTK incorrectly handled certain requests. If
a user or an automated system were tricked into opening a certain specially
crafted input file, a remote attacker could possibly use this issue to
cause a denial of service. This issue only affected Ubuntu 20.04 LTS.
(CVE-2021-41687, CVE-2021-41688, CVE-2021-41689, CVE-2021-41690)
Sharon Brizinov and Noam Moshe discovered that DCMTK incorrectly handled
pointers. If a user or an automated system were tricked into opening a
certain specially crafted input file, a remote attacker could possibly use
this issue to cause a denial of service. This issue only affected
Ubuntu 20.04 LTS. (CVE-2022-2121)
It was discovered that DCMTK incorrec
Debian
CVE-2024-28130: dcmtk - An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::...
vendor_debian·2024·CVSS 7.5
CVE-2024-28130 [HIGH] CVE-2024-28130: dcmtk - An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::...
An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Scope: local
bookworm: resolved (fixed in 3.6.7-9~deb12u3)
bullseye: resolved (fixed in 3.6.5-1+deb11u1)
forky: resolved (fixed in 3.6.7-14)
sid: resolved (fixed in 3.6.7-14)
trixie: resolved (fixed in 3.6.7-14)
No detection rules found.
No public exploits indexed.
Talos
Whatsup Gold, Observium and Offis vulnerabilities
blogs_talos·2025-01-29·CVSS 7.5
[HIGH] Whatsup Gold, Observium and Offis vulnerabilities
Cisco Talos’ Vulnerability Research team recently disclosed three vulnerabilities in Observium, three vulnerabilities in Offis, and four vulnerabilities in Whatsup Gold.
These vulnerabilities exist in Observium, a network observation and monitoring system; Offis DCMTK, a collection of libraries and applications implementing DICOM (Digital Imaging and Communications in Medicine) standard formats; and WhatsUp Gold, an IT infrastructure management product.
The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability disclosure policy.
For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.org, and our latest Vulnerability Advisories are alw
Talos
Whatsup Gold, Observium and Offis vulnerabilities
blogs_talos·2025-01-29·CVSS 7.5
[HIGH] Whatsup Gold, Observium and Offis vulnerabilities
## Whatsup Gold, Observium and Offis vulnerabilities
Cisco Talos’ Vulnerability Research team recently disclosed three vulnerabilities in Observium, three vulnerabilities in Offis, and four vulnerabilities in Whatsup Gold.
These vulnerabilities exist in Observium, a network observation and monitoring system; Offis DCMTK, a collection of libraries and applications implementing DICOM (Digital Imaging and Communications in Medicine) standard formats; and WhatsUp Gold, an IT infrastructure management product.
The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability disclosure policy .
For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Sno
Talos
Vulnerabilities in employee management system could lead to remote code execution, login credential theft
blogs_talos·2024-05-01·CVSS 5.3
[MEDIUM] Vulnerabilities in employee management system could lead to remote code execution, login credential theft
Cisco Talos’ Vulnerability Research team has disclosed more than a dozen vulnerabilities over the past three weeks, five in a device that allows employees to check in and out of their shifts, and another that exists in an open-source library used in medical device imaging files.
The Peplink Smart Reader contains several vulnerabilities, including one issue that could allow an adversary to obtain the administrator’s login credentials and the MD5-hashed version of their password.
Talos also recently helped to responsibly disclose and patch other vulnerabilities in the Foxit PDF Reader and two open-source libraries that support the processing and handling of DICOM files.
For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.o
Talos
Vulnerabilities in employee management system could lead to remote code execution, login credential theft
blogs_talos·2024-05-01·CVSS 5.3
[MEDIUM] Vulnerabilities in employee management system could lead to remote code execution, login credential theft
## Vulnerabilities in employee management system could lead to remote code execution, login credential theft
Cisco Talos’ Vulnerability Research team has disclosed more than a dozen vulnerabilities over the past three weeks, five in a device that allows employees to check in and out of their shifts, and another that exists in an open-source library used in medical device imaging files.
The Peplink Smart Reader contains several vulnerabilities, including one issue that could allow an adversary to obtain the administrator’s login credentials and the MD5-hashed version of their password.
Talos also recently helped to responsibly disclose and patch other vulnerabilities in the Foxit PDF Reader and two open-source libraries that support the processing and handling of DICOM files.
For Snort
https://lists.debian.org/debian-lts-announce/2024/06/msg00022.htmlhttps://talosintelligence.com/vulnerability_reports/TALOS-2024-1957https://lists.debian.org/debian-lts-announce/2024/06/msg00022.htmlhttps://lists.debian.org/debian-lts-announce/2025/01/msg00032.htmlhttps://talosintelligence.com/vulnerability_reports/TALOS-2024-1957https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1957
2024-04-23
Published