CVE-2025-2581: xmedcon DICOM File malloc integer underflow
First published: Fri Mar 21 2025(Updated: )
A vulnerability has been found in xmedcon 0.25.0 and classified as problematic. Affected by this vulnerability is the function malloc of the component DICOM File Handler. The manipulation leads to integer underflow. The attack can be launched remotely. Upgrading to version 0.25.1 is able to address this issue. It is recommended to upgrade the affected component.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xmedcon | =0.25.0 | |
| Xmedcon |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-2581?
CVE-2025-2581 is classified as a problematic vulnerability due to integer underflow in the DICOM File Handler.
How do I fix CVE-2025-2581?
To fix CVE-2025-2581, upgrade to version 0.25.1 of xmedcon.
What component is affected by CVE-2025-2581?
CVE-2025-2581 affects the malloc function of the DICOM File Handler component in xmedcon.
Can CVE-2025-2581 be exploited remotely?
Yes, CVE-2025-2581 can be exploited remotely.
What type of vulnerability is CVE-2025-2581?
CVE-2025-2581 is an integer underflow vulnerability.
- agent/references
- agent/title
- agent/weakness
- agent/description
- agent/type
- agent/first-publish-date
- agent/author
- agent/source
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/guess-ai
- vendor/xmedcon project
- canonical/xmedcon
- version/xmedcon/0.25.0
- vendor/xmedcon