MicroDicom DICOM Viewer Buffer Overflow Vulnerability
CVE-2024-28877

8.8HIGH

Key Information:

Vendor: Microdicom
Status: Dicom Viewer
Vendor: CVE Published:; 11 June 2024

What is CVE-2024-28877?

MicroDicom DICOM Viewer is affected by a stack-based buffer overflow vulnerability, which can be exploited by an attacker to execute arbitrary code on the compromised system. Exploitation of this vulnerability necessitates user interaction, making it critical for users to avoid suspicious documents or files that may trigger this flaw. Security practitioners should be aware of potential risks associated with this vulnerability and implement appropriate measures to mitigate exposure.

Affected Version(s)

DICOM Viewer 0 < 2024.2

References

https://www.cisa.gov/news-events/ics-medical-advisories/i...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 11, 2024
Vulnerability Reserved
May 23, 2024

Credit

Michael Heinzl reported these vulnerabilities to CISA.

Microdicom

What is CVE-2024-28877?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit