Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OFFIS DCMTK dcmdata dcbytstr.cc makeDicomByteString memory corruption
Vulnerability Description
A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by this issue is the function DcmByteString::makeDicomByteString of the file dcmdata/libsrc/dcbytstr.cc of the component dcmdata. The manipulation results in memory corruption. The attack can be launched remotely. Upgrading to version 3.7.0 can resolve this issue. The patch is identified as 4c0e5c10079392c594d6a7abd95dd78ac0aa556a. You should upgrade the affected component.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
OFFIS DCMTK 缓冲区错误漏洞
Vulnerability Description
OFFIS DCMTK是德国OFFIS公司的一个实现大部分 DICOM 标准的库和应用程序的集合。用于检查、构建和转换 DICOM 图像文件、处理离线媒体、通过网络连接发送和接收图像的软件,以及演示图像存储和工作列表服务器。 OFFIS DCMTK 3.6.9及之前版本存在缓冲区错误漏洞,该漏洞源于dcmdata组件中dcbytstr.cc文件的DcmByteString::makeDicomByteString函数存在内存损坏问题,可能导致远程攻击。
CVSS Information
N/A
Vulnerability Type
N/A