CNNVD-202507-3515 Information

CNNVD ID

CNNVD-202507-3515

Related CVE

CVE-2025-27724

• CNNVD Published: 2025-07-28

Description (Chinese)

MedDream PACS Premium是MedDream公司的一款企业级图像存储与管理服务器套件。 MedDream PACS Premium 7.3.3.840版本存在访问控制错误漏洞，该漏洞源于文件login.php功能存在权限提升。

Description (English)

MedDream PACS Premium is an enterprise-level image storage and management server suite for MedDream. MedDream PACS Premium 7.3.3.840 has an error access control loophole, which stems from the login.php function with enhanced access.

Hazard Level

Low

Vulnerability Type

访问控制错误

Affected Vendor

MedDream

Published

2025-07-28

Last Modified

2026-02-24

References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2156 https://access.redhat.com/security/cve/cve-2025-27724

Patch

https://meddream.com/products/meddream-dicom-viewer/#downloads