Talos Vulnerability Report TALOS-2024-1957 OFFIS DCMTK DVPSSoftcopyVOI_PList::createFromImage incorrect type conversion vulnerability April 23, 2024 CVE Number CVE-2024-28130 SUMMARY An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability. CONFIRMED VULNERABLE VERSIONS The versions below were either tested or verified to be vulnerable by Talos or confirmed to be vulnerable by the vendor. OFFIS DCMTK 3.6.8 PRODUCT URLS DCMTK – https://dicom.offis.de/dcmtk.php.en CVSSv3 SCORE 7.5 – CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CWE CWE-704 – Incorrect Type Conversion or Cast DETAILS DCMTK is a collection of libraries and applications implementing large parts the DICOM standard. It includes software … for examining, constructing and converting DICOM image files handling storage media sending and receiving images over a network connection as well as demonstrative image storage and worklist servers DCMTK is is written in a mixture of ANSI C and C++. It comes in complete source code and is made available as open source software. DCMTK has been used at numerous DICOM demonstrations to provide central, vendor-independent image storage and worklist servers (CTNs – Central Test Nodes). It is used by hospitals and companies all over the world for a wide variety of…Read More