An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published: 2024-04-23T14:46:43.296Z

Updated: 2024-08-02T00:48:49.150Z

Reserved: 2024-03-07T10:05:15.275Z

Link: CVE-2024-28130

cve-icon Vulnrichment

Updated: 2024-08-02T00:48:49.150Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-04-23T15:15:49.390

Modified: 2024-11-21T09:05:52.640

Link: CVE-2024-28130

cve-icon Redhat

No data.