VYPR
Unrated severityNVD Advisory· Published Jun 28, 2022· Updated Nov 3, 2025

CVE-2021-41689

CVE-2021-41689

Description

DCMTK through 3.6.6 does not handle string copy properly. Sending specific requests to the dcmqrdb program, it would query its database and copy the result even if the result is null, which can incur a head-based overflow. An attacker can use it to launch a DoS attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dcmtk/Dcmtkcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=3.6.6

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.