PT-2025-7094 · Dcmtk+4 · Dcmtk+4

Ding Zhengzheng

·

Published

2025-01-17

·

Updated

2025-11-04

·

CVE-2025-25472

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions: DCMTK versions 3.6.9+ DEV
Description: A buffer overflow in DCMTK allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.
Recommendations: For DCMTK versions 3.6.9+ DEV, update to a version that fixes the buffer overflow issue to prevent Denial of Service (DoS) attacks.

Fix

DoS

Stack Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-120

Related Identifiers

ALT-PU-2025-8713
ALT-PU-2025-8855
BDU:2025-02223
CVE-2025-25472
DLA-4227-1
MGASA-2025-0076
OPENSUSE-SU-2025:0068-1
OPENSUSE-SU-2025:14823-1

Affected Products

Alt Linux
Astra Linux
Dcmtk
Debian
Red Os