First published: Thu Jan 30 2025(Updated: )
Sante PACS Server DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Sante PACS Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of DCM files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-25303.
Credit: zdi-disclosures@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Sante PACS Server PG | ||
Sante PACS Server PG | <4.0.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-0569 is classified as a denial-of-service vulnerability.
To fix CVE-2025-0569, update to the latest version of Sante PACS Server or apply any available patches.
CVE-2025-0569 can be exploited by remote attackers to create a denial-of-service condition.
No, authentication is not required to exploit CVE-2025-0569.
CVE-2025-0569 affects the Sante PACS Server software.