First published: Wed Jul 07 2021(Updated: )
An integer overflow vulnerability exists in the DICOM parse_dicom_meta_info functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to a stack-based buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
AccuSoft ImageGear | =19.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2021-21807.
The severity of CVE-2021-21807 is critical with a score of 9.8.
The vulnerability occurs due to an integer overflow in the DICOM parse_dicom_meta_info functionality.
This vulnerability can lead to a stack-based buffer overflow when a specially crafted malformed file is provided.
At the moment, there is no specific fix available for this vulnerability. It is recommended to follow the guidance provided by Accusoft or the relevant security advisory.