Primary

Context

MicroDicom DICOM Viewer Out-of-Bounds Write Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Patched

A vulnerability allowing an out-of-bounds write has been identified in MicroDicom DICOM Viewer, versions 2025.1 (Build 3321) and prior. This vulnerability may enable an attacker to execute arbitrary code, but exploitation requires the user to open a malicious DCM file.

Impact

Exploitation of this vulnerability could lead to memory corruption and allow for the execution of arbitrary code.

Remediation

Users are advised to update MicroDicom DICOM Viewer to version 2025.2 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MicroDicom DICOM Viewer Out-of-Bounds Write Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

MicroDicom DICOM Viewer

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating