VYPR

GDCM

by GDCM

Source repositories

CVEs (5)

  • CVE-2025-11266MedDec 12, 2025
    risk 0.36cvss 6.6epss 0.00

    An out-of-bounds write vulnerability exists in the Grassroots DICOM library (GDCM). The issue is triggered during parsing of a malformed DICOM file containing encapsulated PixelData fragments (compressed image data stored as multiple fragments). This vulnerability leads to a…

  • CVE-2025-53619Dec 16, 2025
    risk 0.00cvss epss 0.00

    An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.The function…

  • CVE-2025-53618Dec 16, 2025
    risk 0.00cvss epss 0.00

    An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.The function…

  • CVE-2025-52582Dec 16, 2025
    risk 0.00cvss epss 0.00

    An out-of-bounds read vulnerability exists in the Overlay::GrabOverlayFromPixelData functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.

  • CVE-2025-48429Dec 16, 2025
    risk 0.00cvss epss 0.00

    An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to leaking heap data. An attacker can provide a malicious file to trigger this vulnerability.