Offis Dcmtk vulnerabilities

CVE-2026-5663 [MEDIUM] CWE-77 CVE-2026-5663: A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnR A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible. The patch is named edbb085e45788dccaf0e64d71534cfca92578

CVE-2025-14841 [MEDIUM] CWE-404 CVE-2025-14841: A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetri A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null pointer dereference. The attack requires local access. Up

CVE-2025-14607 [MEDIUM] CWE-119 CVE-2025-14607: A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by this issue is the function DcmB A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by this issue is the function DcmByteString::makeDicomByteString of the file dcmdata/libsrc/dcbytstr.cc of the component dcmdata. The manipulation results in memory corruption. The attack can be launched remotely. Upgrading to version 3.7.0 can resolve this issue. The patch is identif

CVE-2020-36855 [MEDIUM] CWE-119 CVE-2020-36855: A security vulnerability has been detected in DCMTK up to 3.6.5. The affected element is the functio A security vulnerability has been detected in DCMTK up to 3.6.5. The affected element is the function parseQuota of the component dcmqrscp. The manipulation of the argument StorageQuota leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed publicly and may be used. Upgrading to version

CVE-2022-4981 [MEDIUM] CWE-404 CVE-2022-4981: A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetr A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now public and may be used. Upgrading to version 3.6.8 is suffic

CVE-2025-9732 [MEDIUM] CWE-119 CVE-2025-9732: A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library dcmimage/include/dcmtk/dcmimage/diybrpxt.h of the component dcm2img. Such manipulation leads to memory corruption. Local access is required to approach this attack. The name of the patch is 7ad81d69b. It is best practice to apply a patch to resolve thi

CVE-2025-2357 [MEDIUM] CWE-119 CVE-2025-2357: A vulnerability was found in DCMTK 3.6.9. It has been declared as critical. This vulnerability affec A vulnerability was found in DCMTK 3.6.9. It has been declared as critical. This vulnerability affects unknown code of the component dcmjpls JPEG-LS Decoder. The manipulation leads to memory corruption. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 3239a7915. It is recommen

CVE-2025-25475 [HIGH] CWE-476 CVE-2025-25475: A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attacker A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

CVE-2025-25474 [MEDIUM] CWE-120 CVE-2025-25474: DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h. DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.

CVE-2025-25472 [MEDIUM] CWE-120 CVE-2025-25472: A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.

CVE-2024-52333 [HIGH] CWE-119 CVE-2024-52333: An improper array index validation vulnerability exists in the determineMinMax functionality of OFFI An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.

CVE-2024-47796 [HIGH] CWE-119 CVE-2024-47796: An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.

CVE-2024-27628 [HIGH] CWE-120 CVE-2024-27628: Buffer Overflow vulnerability in DCMTK v.3.6.8 allows an attacker to execute arbitrary code via the Buffer Overflow vulnerability in DCMTK v.3.6.8 allows an attacker to execute arbitrary code via the EctEnhancedCT method component.

CVE-2024-34508 [MEDIUM] CWE-476 CVE-2024-34508: dcmnet in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message. dcmnet in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.

CVE-2024-34509 [MEDIUM] CVE-2024-34509: dcmdata in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message. dcmdata in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.

CVE-2024-28130 [HIGH] CWE-704 CVE-2024-28130: An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage func An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

CVE-2015-8979 [HIGH] dcmtk vulnerabilities dcmtk vulnerabilities Gjoko Krstic discovered that DCMTK incorrectly handled buffers. If a user or an automated system were tricked into opening a certain specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS. (CVE-2015-8979) Omar Ganiev discovered that DCMTK incorrectly handled buffers. If a user or an automated system were tricked into opening a certain s

CVE-2022-43272 [HIGH] CWE-401 CVE-2022-43272: DCMTK v3.6.7 was discovered to contain a memory leak via the T_ASC_Association object. DCMTK v3.6.7 was discovered to contain a memory leak via the T_ASC_Association object.

CVE-2021-41687 [HIGH] CWE-401 CVE-2021-41687: DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for parsi DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for parsing data, but does not free it when error in parsing. Sending specific requests to the dcmqrdb program incur the memory leak. An attacker can use it to launch a DoS attack.

CVE-2021-41690 [HIGH] CWE-401 CVE-2021-41690: DCMTK through 3.6.6 does not handle memory free properly. The malloced memory for storing all file i DCMTK through 3.6.6 does not handle memory free properly. The malloced memory for storing all file information are recorded in a global variable LST and are not freed properly. Sending specific requests to the dcmqrdb program can incur a memory leak. An attacker can use it to launch a DoS attack.