Primary

Context

Sante PACS Server Memory Corruption Denial-of-Service Vulnerability

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Sante PACS Server. This issue arises from the web server module's improper validation of user-supplied data in URL parsing, leading to memory corruption. Remote attackers can exploit this vulnerability to cause a denial-of-service condition on the affected system, without requiring authentication.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Remediation

Users can upgrade to Sante PACS Server version 4.0.10 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

2.5

exploitability

7.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

2.5

exploitability

7.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sante PACS Server Memory Corruption Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Sante PACS Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating