CVE-2024-25386

Name of the Vulnerable Software and Affected Versions DICOM Connectivity Framework versions prior to 2.7.6b

Description The issue allows a remote attacker to execute arbitrary code via the format logfile.pl file. This is a Directory Traversal vulnerability, which can be exploited to access files and directories that are not intended to be accessible.

Recommendations For versions prior to 2.7.6b, update to version 2.7.6b or later to resolve the issue. As a temporary workaround, consider restricting access to the format logfile.pl file to minimize the risk of exploitation.