Vulnerabilities in OFFIS
11 resultsCVE-2022-2119HIGHOFFIS DCMTK Path TraversalEPSS 2.8%CVE-2022-2120HIGHOFFIS DCMTK Path TraversalEPSS 2.8%CVE-2026-5663MEDIUMOFFIS DCMTK storescp storescp.cc executeOnEndOfStudy os command injectionEPSS 1.7%CVE-2024-28130HIGHAn incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A speciaEPSS 1.7%CVE-2022-2121HIGHOFFIS DCMTK NULL Pointer DereferenceEPSS 0.7%CVE-2024-52333HIGHAn improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOMEPSS 0.6%CVE-2024-47796HIGHAn improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file cEPSS 0.6%CVE-2026-12805MEDIUMOFFIS DCMTK ofxml.cc parseFile heap-based overflowEPSS 0.3%CVE-2026-10194MEDIUMOFFIS DCMTK dcmqrscp dcmqrdbi.cc deleteOldestImages heap-based overflowEPSS 0.2%CVE-2025-14607MEDIUMOFFIS DCMTK dcmdata dcbytstr.cc makeDicomByteString memory corruptionEPSS 0.2%CVE-2025-14841MEDIUMOFFIS DCMTK dcmqrscp dcmqrdbi.cc startMoveRequest null pointer dereferenceEPSS 0.1%