VYPR
Vendor

MicroDicom

Products
1
CVEs
9
Across products
9
Status
Private

Products

1

Recent CVEs

9
  • CVE-2025-5943HigJun 10, 2025
    risk 0.57cvss 8.8epss 0.01

    MicroDicom DICOM Viewer suffers from an out-of-bounds write vulnerability. Remote attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of DICOM Viewer. User interaction is required to exploit the vulnerability in that the…

  • CVE-2025-36521HigMay 1, 2025
    risk 0.57cvss 8.8epss 0.00

    MicroDicom DICOM Viewer is vulnerable to an out-of-bounds read which may allow an attacker to cause memory corruption within the application. The user must open a malicious DCM file for exploitation.

  • CVE-2025-35975HigMay 1, 2025
    risk 0.57cvss 8.8epss 0.00

    MicroDicom DICOM Viewer is vulnerable to an out-of-bounds write which may allow an attacker to execute arbitrary code. The user must open a malicious DCM file for exploitation.

  • CVE-2024-33606HigJun 11, 2024
    risk 0.57cvss 8.8epss 0.00

    An attacker could retrieve sensitive files (medical images) as well as plant new medical images or overwrite existing medical images on a MicroDicom DICOM Viewer system. User interaction is required to exploit this vulnerability.

  • CVE-2024-28877HigJun 11, 2024
    risk 0.57cvss 8.8epss 0.01

    MicroDicom DICOM Viewer is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code on affected installations of DICOM Viewer. User interaction is required to exploit this vulnerability.

  • CVE-2024-25578HigMar 1, 2024
    risk 0.51cvss 7.8epss 0.00

    MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior contain a lack of proper validation of user-supplied data, which could result in memory corruption within the application.

  • CVE-2024-22100HigMar 1, 2024
    risk 0.51cvss 7.8epss 0.00

    MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior are affected by a heap-based buffer overflow vulnerability, which could allow an attacker to execute arbitrary code on affected installations of DICOM Viewer. A user must open a malicious DCM file in order to…

  • CVE-2025-1002MedFeb 10, 2025
    risk 0.37cvss 5.7epss 0.00

    MicroDicom DICOM Viewer version 2024.03 fails to adequately verify the update server's certificate, which could make it possible for attackers in a privileged network position to alter network traffic and carry out a machine-in-the-middle (MITM) attack. This allows the…

  • CVE-2025-2029MedMar 6, 2025
    risk 0.34cvss 5.3epss 0.00

    A vulnerability was found in MicroDicom DICOM Viewer 2025.1 Build 3321. It has been classified as critical. Affected is an unknown function of the file mDicom.exe. The manipulation leads to memory corruption. The attack needs to be approached locally. It is recommended to…