Simon4Machinespirits

Name of the Vulnerable Software and Affected Versions OFFIS DCMTK versions up to 3.7.0 Description A security flaw exists in OFFIS DCMTK up to version 3.7.0. The issue affects the `executeOnReception`/`executeOnEndOfStudy` function within the `dcmnet/apps/storescp.cc` file of the `storescp` component. Manipulation of this function can lead to OS command injection. Remote exploitation is possible. Recommendations Apply patch edbb085e45788dccaf0e64d71534cfca925784b8.