CVE-2025-14607

CVSS v2.0

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions OFFIS DCMTK versions prior to 3.7.0

Description A flaw exists in the

DcmByteString::makeDicomByteString

function within the

dcmdata/libsrc/dcbytstr.cc

file of the

dcmdata

component. This manipulation can lead to memory corruption and can be exploited remotely.

Recommendations Upgrade to version 3.7.0 to resolve this issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2025-14607

MGASA-2026-0040

Dcmtk

Debian