First published: Thu Oct 19 2023(Updated: )
Sante DICOM Viewer Pro lacks proper validation of user-supplied data when parsing DICOM files. This could lead to an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process.
Credit: ics-cert@hq.dhs.gov ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Santesoft Dicom Viewer Pro | <12.2.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Sante DICOM Viewer Pro is a software used to view medical images in the DICOM format.
The vulnerability in Sante DICOM Viewer Pro is the lack of proper validation of user-supplied data when parsing DICOM files.
The potential impact of the vulnerability is an out-of-bounds write, which can be exploited by an attacker to execute arbitrary code in the context of the current process.
Sante DICOM Viewer Pro versions up to 12.2.6 are affected by the vulnerability.
To fix the vulnerability in Sante DICOM Viewer Pro, it is recommended to update to a version higher than 12.2.6.