| |
Vulnerability CVE-2024-28130
Published: 2024-04-23
| Description: |
An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability. |
Type:
CWE-704 (Incorrect Type Conversion or Cast)
References: |
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1957
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
