CVE-2025-14607

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions OFFIS DCMTK versions prior to 3.7.0

Description A flaw exists in the DcmByteString::makeDicomByteString function within the dcmdata/libsrc/dcbytstr.cc file of the dcmdata component. This manipulation can lead to memory corruption and can be exploited remotely.

Recommendations Upgrade to version 3.7.0 to resolve this issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2026-07522

CVE-2025-14607

MGASA-2026-0040

OPENSUSE-SU-2026:10006-1

Affected Products

Dcmtk

Debian

CVE-2025-14607

Weakness Enumeration

Related Identifiers

Affected Products

References · 25