Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Sante DICOM Viewer Pro DCM File Parsing Use-After-Free Information Disclosure Vulnerability
Vulnerability Description
Sante DICOM Viewer Pro DCM File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DCM files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-21405.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
Santesoft Sante DICOM Viewer Pro 安全漏洞
Vulnerability Description
Santesoft Sante DICOM Viewer Pro是塞浦路斯Santesoft公司的一个强大的查看器、匿名器、转换器和 PACS 客户端。适用于所有模式和制造商的 DICOM 文件。 Santesoft Sante DICOM Viewer Pro 存在安全漏洞,该漏洞源于DCM 文件解析存在安全漏洞,在对对象执行操作之前未验证对象的存在,允许远程攻击者在受影响的 Sante DICOM Viewer Pro 安装过程中获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A