Skip to main content

Dicom Viewer Pro EUVDEUVD-2025-17355

| CVE-2025-5481 HIGH
Out-of-bounds Write (CWE-787)
2025-06-06 zdi-disclosures@trendmicro.com
7.8
CVSS 3.0 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
EUVD ID Assigned
Mar 14, 2026 - 18:10 euvd
EUVD-2025-17355
Analysis Generated
Mar 14, 2026 - 18:10 vuln.today
CVE Published
Jun 06, 2025 - 19:15 nvd
HIGH 7.8

DescriptionCVE.org

Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

The specific flaw exists within the parsing of DCM files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-26168.

AnalysisAI

Out-of-bounds write vulnerability in Sante DICOM Viewer Pro's DCM file parsing that allows remote code execution with high severity (CVSS 7.8). The vulnerability affects users who open malicious DICOM files, enabling attackers to execute arbitrary code in the application's process context. This is a user-interaction-dependent vulnerability with local attack vector, but the ability to trigger RCE via file opening makes it practically significant for targeted attacks.

Technical ContextAI

The vulnerability exists in the DICOM (Digital Imaging and Communications in Medicine) file parsing functionality of Sante DICOM Viewer Pro. DICOM is a standard for handling, storing, printing, and transmitting medical image information. The root cause is CWE-787 (Out-of-bounds Write), where the parser fails to properly validate user-supplied data within DCM file structures, allowing an attacker to write data past the end of an allocated buffer. This memory corruption can overwrite adjacent heap or stack memory, potentially corrupting critical data structures or enabling code execution through heap spray or ROP chain techniques. The flaw was originally tracked as ZDI-CAN-26168, indicating it was responsibly disclosed to Trend Micro's Zero Day Initiative.

RemediationAI

Specific patch versions are not provided in the available information. Recommended remediation steps: (1) Contact Sante Software or check their official website for patch availability addressing ZDI-CAN-26168 / CVE-2025-5481; (2) Update Sante DICOM Viewer Pro to the latest patched version as released by the vendor; (3) Until patching is possible, implement application-level mitigations: restrict file opening to trusted DICOM sources, disable auto-opening of DICOM files from email/web, and educate users not to open unsolicited DICOM files; (4) Use application sandboxing or virtualization if available to limit code execution impact; (5) Monitor security advisories from Sante Software for patch release announcements. Vendor security bulletin should be referenced at: [Contact Sante Software directly or monitor their security page].

CVE-2025-5307 HIGH
8.4 May 29

Santesoft Sante DICOM Viewer Pro contains a memory corruption vulnerability. Rated high severity (CVSS 8.4), this vulner

CVE-2025-2480 HIGH
8.4 Mar 20

Santesoft Sante DICOM Viewer Pro is vulnerable to an out-of-bounds write, which requires a user to open a malicious DCM

CVE-2026-2034 HIGH
7.8 Feb 20

Remote code execution in Sante DICOM Viewer Pro via buffer overflow when parsing malicious DCM files allows attackers to

CVE-2024-1453 HIGH
7.8 Mar 01

In Sante DICOM Viewer Pro versions 14.0.3 and prior, a user must open a malicious DICOM file, which could allow a local

CVE-2023-39431 HIGH
7.8 Oct 19

Sante DICOM Viewer Pro lacks proper validation of user-supplied data when parsing DICOM files. Rated high severity (CVSS

CVE-2023-35986 HIGH
7.8 Oct 19

Sante DICOM Viewer Pro lacks proper validation of user-supplied data when parsing DICOM files. Rated high severity (CVSS

CVE-2022-28668 HIGH
7.8 Aug 03

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro

CVE-2022-24064 HIGH
7.8 Feb 18

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro

CVE-2022-24063 HIGH
7.8 Feb 18

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro

CVE-2022-24062 HIGH
7.8 Feb 18

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro

CVE-2022-24059 HIGH
7.8 Feb 18

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro

CVE-2022-24058 HIGH
7.8 Feb 18

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro

Share

EUVD-2025-17355 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy