An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2024-04-23T14:46:43.296Z
Updated: 2024-08-02T00:48:49.150Z
Reserved: 2024-03-07T10:05:15.275Z
Link: CVE-2024-28130
Vulnrichment
Updated: 2024-08-02T00:48:49.150Z
NVD
Status : Awaiting Analysis
Published: 2024-04-23T15:15:49.390
Modified: 2024-11-21T09:05:52.640
Link: CVE-2024-28130
Redhat
No data.