CVE-2025-9732
HIGH7.8EPSS 0.03%發布日:2025/8/31修改日:2026/4/28
也稱為:DEBIAN-CVE-2025-9732
描述
A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library dcmimage/include/dcmtk/dcmimage/diybrpxt.h of the component dcm2img. Such manipulation leads to memory corruption. Local access is required to approach this attack. The name of the patch is 7ad81d69b. It is best practice to apply a patch to resolve this issue.
受影響套件(1)
- Debian/dcmtkfrom 0, < 3.6.5-1+deb11u5
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |