PT-2026-31632 · Dicom · Dicom
Published
2026-04-09
·
Updated
2026-04-09
·
CVE-2026-5443
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
DICOM (affected versions not specified)
Description
A heap buffer overflow occurs during the decoding of
PALETTE COLOR DICOM images. The pixel length validation uses 32-bit multiplication to calculate width and height. If these values overflow, the validation check incorrectly succeeds, allowing the decoder to read and write to memory beyond allocated buffers.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dicom