A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library dcmimage/include/dcmtk/dcmimage/diybrpxt.h of the component dcm2img. Such manipulation leads to memory corruption. Local access is required to approach this attack. The name of the patch is 7ad81d69b. It is best practice to apply a patch to resolve this issue.
References
| Link | Resource |
|---|---|
| https://github.com/DCMTK/dcmtk/commit/7ad81d69b | Patch |
| https://vuldb.com/?ctiid.322023 | Permissions Required VDB Entry |
| https://vuldb.com/?id.322023 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.639772 | Third Party Advisory VDB Entry |
| https://github.com/DCMTK/dcmtk/commit/7ad81d69b | Patch |
Configurations
History
05 Sep 2025, 20:21
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/DCMTK/dcmtk/commit/7ad81d69b - Patch | |
| References | () https://vuldb.com/?ctiid.322023 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.322023 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.639772 - Third Party Advisory, VDB Entry | |
| First Time |
Offis
Offis dcmtk |
|
| CWE | CWE-787 | |
| CPE | cpe:2.3:a:offis:dcmtk:*:*:*:*:*:*:*:* |
02 Sep 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/DCMTK/dcmtk/commit/7ad81d69b - |
31 Aug 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-08-31 14:15
Updated : 2025-09-05 20:21
NVD link : CVE-2025-9732
Mitre link : CVE-2025-9732
CVE.ORG link : CVE-2025-9732
JSON object : View
Products Affected
offis
- dcmtk