← back
CVE-2025-2264

Santesoft Sante PACS Server Path Traversal Information Disclosure

CVSS 7.5 HIGHEPSS 38.7%CWE-22
A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attacker can exploit it to download arbitrary files on the disk drive where the application is installed.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
Santesoft · Sante PACS Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.tenable.com/security/research/tra-2025-08