Primary

Context

xmedcon Integer Underflow Vulnerability in DICOM File Handler

Vulnerability

An integer underflow vulnerability has been identified in xmedcon version 0.25.0, specifically within the DICOM File Handler component's malloc function. This vulnerability allows for remote exploitation, where an attacker can manipulate input to cause the integer underflow, potentially leading to memory corruption. The issue has been acknowledged to impact the application's availability.

Impact

Exploitation of this vulnerability causes a heap buffer overflow, allowing for memory corruption. This type of vulnerability can often be exploited to execute arbitrary code or cause a denial-of-service condition, where the application crashes or becomes unresponsive.

Remediation

Users are advised to upgrade to xmedcon version 0.25.1, which addresses this vulnerability. The updated version is available for download on the xmedcon official website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.7

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.7

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

xmedcon Integer Underflow Vulnerability in DICOM File Handler

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating