CVE-2025-5943 — HIGH (8.8) — White Hats Nepal

Vulnerability Description

MicroDicom DICOM Viewer suffers from an out-of-bounds write vulnerability. Remote attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of DICOM Viewer. User interaction is required to exploit the vulnerability in that the user must either visit a malicious website or open a malicious DICOM file locally.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Related Weaknesses (CWE)

CWE-787

References

https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-160-01

FAQ

What is CVE-2025-5943?

CVE-2025-5943 is a vulnerability with a CVSS score of 8.8 (HIGH). MicroDicom DICOM Viewer suffers from an out-of-bounds write vulnerability. Remote attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of DICOM Vi...

How severe is CVE-2025-5943?

CVE-2025-5943 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-5943?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.