Skip to main content

Pacs Server

34 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-58095 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58094 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58093 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58092 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58091 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58090 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58089 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58088 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58087 MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-58080 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7App functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-57881 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyEmail functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-57787 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-57786 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the notifynewstudy functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-55071 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyAnonymize functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-54861 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyCoercion functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-54853 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyUser functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-54852 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyAeTitle functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-54817 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the autoPurge functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious url can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-54814 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopurgeFilter functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-54778 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the existingUser functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-54495 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the emailfailedjob functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious url can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-54157 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-53912 CRITICAL POC Act Now

MedDream PACS Premium 7.3.6.870 has an arbitrary file read vulnerability in the encapsulatedDoc feature that allows attackers to read sensitive server files including DICOM medical records.

Information Disclosure Pacs Server
NVD
CVSS 3.1
9.6
EPSS
0.2%
CVE-2025-53854 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-53707 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyTranscript functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-53516 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the downloadZip functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious url can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-46270 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-44000 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the sendOruReport functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2025-36556 MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the ldapUser functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

LDAP XSS Pacs Server
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-3484 CRITICAL This Week

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow Pacs Server
NVD
CVSS 3.0
9.8
EPSS
1.9%
CVE-2025-3483 HIGH This Month

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow Pacs Server
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2025-3482 HIGH This Month

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow Pacs Server
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2025-3481 HIGH This Month

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow Pacs Server
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2025-3480 MEDIUM This Month

MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Pacs Server
NVD
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-58095
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58094
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58093
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58092
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58091
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58090
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58089
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58088
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58087
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

PHP XSS Pacs Server
NVD
CVE-2025-58080
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7App functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-57881
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyEmail functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-57787
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-57786
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the notifynewstudy functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-55071
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyAnonymize functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54861
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyCoercion functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54853
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyUser functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54852
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyAeTitle functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54817
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the autoPurge functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious url can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54814
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopurgeFilter functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54778
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the existingUser functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54495
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the emailfailedjob functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious url can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-54157
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-53912
EPSS 0% CVSS 9.6
CRITICAL POC Act Now

MedDream PACS Premium 7.3.6.870 has an arbitrary file read vulnerability in the encapsulatedDoc feature that allows attackers to read sensitive server files including DICOM medical records.

Information Disclosure Pacs Server
NVD
CVE-2025-53854
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-53707
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the modifyTranscript functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-53516
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the downloadZip functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious url can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-46270
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-44000
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the sendOruReport functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

XSS Pacs Server
NVD
CVE-2025-36556
EPSS 0% CVSS 6.1
MEDIUM POC This Month

A reflected cross-site scripting (xss) vulnerability exists in the ldapUser functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. [CVSS 6.1 MEDIUM]

LDAP XSS Pacs Server
NVD
CVE-2025-3484
EPSS 2% CVSS 9.8
CRITICAL This Week

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow +1
NVD
CVE-2025-3483
EPSS 0% CVSS 7.8
HIGH This Month

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow +1
NVD
CVE-2025-3482
EPSS 0% CVSS 7.8
HIGH This Month

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow +1
NVD
CVE-2025-3481
EPSS 0% CVSS 7.8
HIGH This Month

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Stack Overflow +1
NVD
CVE-2025-3480
EPSS 0% CVSS 6.5
MEDIUM This Month

MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Pacs Server
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy