Lucene search
Ubuntu.comUB:CVE-2024-28130HistorySep 03, 2024 - 12:00 a.m.
CVE-2024-28130
2024-09-0300:00:00
ubuntu.com
ubuntu.com
3
type conversion
vulnerability
offis dcmtk
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
Low
An incorrect type conversion vulnerability exists in the
DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8.
A specially crafted malformed file can lead to arbitrary code execution.
An attacker can provide a malicious file to trigger this vulnerability.
Related
vulnrichment
vulnrichment
CVE-2024-28130
2024-04-23 14:46:43
debiancve
debiancve
CVE-2024-28130
2024-04-23 15:15:49
talos
talos
nvd
nvd
CVE-2024-28130
2024-04-23 15:15:49
cve
cve
CVE-2024-28130
2024-04-23 15:15:49
cvelist
cvelist
CVE-2024-28130
2024-04-23 14:46:43
openvas
openvas
openSUSE: Security Advisory for dcmtk (openSUSE-SU-2024:0113-1)
2024-04-26 00:00:00
Debian: Security Advisory (DLA-3847-1)
2024-07-01 00:00:00
Mageia: Security Advisory (MGASA-2024-0251)
2024-07-04 00:00:00
nessus
nessus
openSUSE 15 Security Update : dcmtk (openSUSE-SU-2024:0113-1)
2024-04-26 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : DCMTK vulnerabilities (USN-7010-1)
2024-09-17 00:00:00
Debian dla-3847 : dcmtk - security update
2024-06-28 00:00:00
mageia
mageia
Updated dcmtk packages fix security vulnerabilities
2024-07-03 19:36:28
osv
osv
dcmtk - security update
2024-06-28 00:00:00
dcmtk vulnerabilities
2024-09-17 05:18:27
talosblog
talosblog
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
Low
Related for UB:CVE-2024-28130