UNKNOWNCVE-2026-5663
OFFIS DCMTK storescp storescp.cc executeOnEndOfStudy os command injection
Platform
c
Component
dcmtk
Fixed in
3.7.1
A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible. The patch is named edbb085e45788dccaf0e64d71534cfca925784b8. Applying a patch is the recommended action to fix this issue.
How to fix
Actualice a la versión 3.7.1 o posterior para mitigar la vulnerabilidad de inyección de comandos del sistema operativo. La actualización corrige la forma en que se manejan los comandos del sistema operativo en la función executeOnReception/executeOnEndOfStudy. Consulte el parche edbb085e45788dccaf0e64d71534cfca925784b8 para obtener más detalles.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free