pkg:Debian/dcmtk

35 total CVEsCRITICAL5HIGH16MEDIUM9

✅ Check your installed version

All known vulnerabilities

CRITICAL9.8CVE-2026-5663A security flaw has been discovered in OFFIS DCMTK up to 3.7.0.
from 0
CRITICAL9.8CVE-2022-2120OFFIS DCMTK's (All versions prior to 3.6.7) service class user (SCU) is vulnerable to relative path traversal, allowing an attacker to writ…
from 0, < 3.6.5-1+deb11u4
CRITICAL9.8CVE-2022-2119dcmtk - security update
from 0, < 3.6.5-1+deb11u4
CRITICAL9.8CVE-2022-2119dcmtk - security update
from 0, < 3.6.5-1+deb11u4
CRITICAL9.8CVE-2019-1010228OFFIS.de DCMTK 3.6.3 and below is affected by: Buffer Overflow.
from 0, < 3.6.4-1
HIGH8.1CVE-2024-27628Buffer Overflow vulnerability in DCMTK v.3.6.8 allows an attacker to execute arbitrary code via the EctEnhancedCT method component.
from 0, < 3.6.7-9~deb12u2
HIGH7.8CVE-2025-9732A vulnerability was identified in DCMTK up to 3.6.9.
from 0, < 3.6.5-1+deb11u5
HIGH7.8CVE-2024-52333An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8.
from 0, < 3.6.5-1+deb11u1
HIGH7.8CVE-2024-47796An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8.
from 0, < 3.6.5-1+deb11u4
HIGH7.5CVE-2025-25475A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) vi…
from 0, < 3.6.5-1+deb11u4
HIGH7.5CVE-2024-28130An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8.
from 0, < 3.6.5-1+deb11u1
HIGH7.5CVE-2022-43272DCMTK v3.6.7 was discovered to contain a memory leak via the T_ASC_Association object.
from 0, < 3.6.5-1+deb11u1
HIGH7.5CVE-2021-41690DCMTK through 3.6.6 does not handle memory free properly.
from 0, < 3.6.5-1+deb11u1
HIGH7.5CVE-2021-41689DCMTK through 3.6.6 does not handle string copy properly.
from 0, < 3.6.5-1+deb11u1
HIGH7.5CVE-2021-41688DCMTK through 3.6.6 does not handle memory free properly.
from 0, < 3.6.5-1+deb11u1
HIGH7.5CVE-2021-41687dcmtk - security update
from 0, < 3.6.4-2.1+deb10u1
HIGH7.5CVE-2021-41687dcmtk - security update
from 0, < 3.6.5-1+deb11u1
HIGH7.5CVE-2021-41687dcmtk - security update
from 0, < 3.6.5-1+deb11u1
HIGH7.5CVE-2015-8979dcmtk - security update
from 0, < 3.6.0-12+deb7u1
HIGH7.5CVE-2015-8979dcmtk - security update
from 0, < 3.6.0-15+deb8u1
HIGH7.5CVE-2015-8979dcmtk - security update
from 0, < 3.6.1~20160216-2
MEDIUM6.5CVE-2025-25474DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.
from 0, < 3.6.5-1+deb11u4
MEDIUM6.5CVE-2022-2121OFFIS DCMTK's (All versions prior to 3.6.7) has a NULL pointer dereference vulnerability while processing DICOM files, which may result in…
from 0, < 3.6.5-1+deb11u1
MEDIUM6.3CVE-2026-10194A weakness has been identified in OFFIS DCMTK 3.7.0.
from 0
MEDIUM5.5CVE-2022-4981A vulnerability was detected in DCMTK up to 3.6.7.
from 0, < 3.6.5-1+deb11u5
MEDIUM5.5CVE-2020-36855dcmtk - security update
from 0, < 3.6.5-1+deb11u5
MEDIUM5.5CVE-2020-36855dcmtk - security update
from 0, < 3.6.5-1+deb11u5
MEDIUM5.3CVE-2025-25472A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.
from 0, < 3.6.5-1+deb11u4
MEDIUM5.3CVE-2024-34509dcmdata in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.
from 0, < 3.6.5-1+deb11u1
MEDIUM4.3CVE-2024-34508dcmnet in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.
from 0, < 3.6.5-1+deb11u1
—CVE-2025-14841A flaw has been found in OFFIS DCMTK up to 3.6.9.
from 0, < 3.6.5-1+deb11u6
—CVE-2025-14607dcmtk - security update
from 0, < 3.6.5-1+deb11u6
—CVE-2025-14607dcmtk - security update
from 0, < 3.6.5-1+deb11u6
—CVE-2025-2357A vulnerability was found in DCMTK 3.6.9.
from 0, < 3.6.5-1+deb11u4
—CVE-2013-6825(1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/scp.cc, (4) dcmwlm/libsrc/wlmactmg.cc, (5) dcmprscp.cc and (6) dcmpsr…
from 0, < 3.6.1~20150629-1