Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Grassroots DICOM (GDCM) Out-of-bounds Write
Vulnerability Description
An out-of-bounds write vulnerability exists in the Grassroots DICOM library (GDCM). The issue is triggered during parsing of a malformed DICOM file containing encapsulated PixelData fragments (compressed image data stored as multiple fragments). This vulnerability leads to a segmentation fault caused by an out-of-bounds memory access due to unsigned integer underflow in buffer indexing. It is exploitable via file input, simply opening a crafted malicious DICOM file is sufficient to trigger the crash, resulting in a denial-of-service condition.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Grassroots DICOM 缓冲区错误漏洞
Vulnerability Description
Grassroots DICOM是Mathieu Malaterre个人开发者的一个软件库。 Grassroots DICOM存在缓冲区错误漏洞,该漏洞源于解析畸形DICOM文件时存在越界写入,可能导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A