CVE-2025-2264

Santesoft Sante PACS Server Path Traversal Information Disclosure

CVSS 7.5 HIGHEPSS 38.7%CWE-22

A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attacker can exploit it to download arbitrary files on the disk drive where the application is installed.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Productos afectados

Santesoft · Sante PACS Server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.tenable.com/security/research/tra-2025-08