Skip to main content

Red Hat CVE-2026-3650

| EUVDEUVD-2026-16450 HIGH
Memory Leak (CWE-401)
2026-03-26 icscert
8.7
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.7 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
SUSE
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Red Hat
6.5 MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

3
EUVD ID Assigned
Mar 26, 2026 - 21:31 euvd
EUVD-2026-16450
Analysis Generated
Mar 26, 2026 - 21:31 vuln.today
CVE Published
Mar 26, 2026 - 21:10 nvd
HIGH 8.7

DescriptionCVE.org

A memory leak exists in the Grassroots DICOM library (GDCM). The bug occurs when parsing malformed DICOM files with non-standard VR types in file meta information. The vulnerability leads to vast memory allocations and resource depletion, triggering a denial-of-service condition. A maliciously crafted file can fill the heap in a single read operation without properly releasing it.

AnalysisAI

Malformed DICOM files with non-standard VR types trigger uncontrolled memory allocation in Grassroots DICOM (GDCM) library, enabling remote denial-of-service attacks without authentication. CISA ICS-CERT issued an ICSMA advisory (26-083-01) highlighting impacts to medical imaging systems that rely on GDCM for DICOM parsing. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Send malformed DICOM file
Delivery
Parser reads non-standard VR types
Exploit
Memory leak allocates heap repeatedly
Execution
System resources exhausted
Impact
Denial-of-service condition

Vulnerability AssessmentAI

Exploitation Remote attacker sends a malformed DICOM file with non-standard VR types in file meta information to any application using Grassroots DICOM (GDCM) library. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H indicates network-accessible exploitation with low complexity requiring no privileges or user interaction, resulting in high availability impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker crafts a malformed DICOM file with invalid VR types in the file meta information header and delivers it to a target medical imaging system via network file transfer protocols (DICOM C-STORE), email attachment to radiology staff, or infected removable media. When the GDCM library parses the file, it allocates excessive heap memory without release, exhausting system resources and causing the PACS server or medical imaging workstation to become unresponsive, disrupting clinical workflows and potentially delaying patient care.
Remediation Organizations using Grassroots DICOM library should monitor the official project repository at https://sourceforge.net/projects/gdcm/ and CISA advisory at https://www.cisa.gov/news-events/ics-medical-advisories/icsma-26-083-01 for patch availability and upgrade guidance. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all medical imaging systems and applications using GDCM library; document affected versions and deployment scope. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: High

Share

CVE-2026-3650 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy