Walco

**Name of the Vulnerable Software and Affected Versions** Orthanc versions prior to 1.12.0 **Description** The issue allows authenticated users with access to the Orthanc API to overwrite arbitrary files on the file system. In specific deployment scenarios, this can be exploited to overwrite the configuration, triggering Remote Code Execution (RCE). **Recommendations** For Orthanc versions prior to 1.12.0, update to version 1.12.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the Orthanc API to minimize the risk of exploitation.