VYPR
Unrated severityNVD Advisory· Published Jun 28, 2022· Updated Nov 3, 2025

CVE-2021-41687

CVE-2021-41687

Description

DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for parsing data, but does not free it when error in parsing. Sending specific requests to the dcmqrdb program incur the memory leak. An attacker can use it to launch a DoS attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dcmtk/Dcmtkcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=3.6.6

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.