CVE-2025-0574

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 30, 2025

Updated: Feb 19, 2025

CWE ID 119

CWE ID 787

Summary

CVE-2025-0574 is a Denial-of-Service (DoS) vulnerability affecting the Sante PACS Server. The issue lies in the web server module's URL parsing, where insufficient validation of user-supplied data can lead to memory corruption. This flaw does not necessitate authentication for exploitation, allowing remote attackers to trigger a denial-of-service condition on the affected system. The vulnerability, originally reported as ZDI-CAN-25318, underscores the importance of secure input validation to prevent memory corruption attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Sante PACS Server

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2mLDsd
https://www.cve.org/CVERecord?id=CVE-2025-0574
https://nvd.nist.gov/vuln/detail/CVE-2025-0574

Back to Vulnerability Database

CVE-2025-0574

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations