CNNVD-202601-4927 Information
CNNVD ID
CNNVD-202601-4927
Related CVE
- CNNVD Published: 2026-01-29
Description (Chinese)
MedDream PACS Server是MedDream公司的一个图片存档和通信系统。用于存储、存档、管理和查看医学图像。 MedDream PACS Server 6.8.3.751版本存在安全漏洞,该漏洞源于uploadImage.php端点允许上传恶意PHP文件,可能导致远程代码执行。
Description (English)
MedDream PACS Server is a photo filing and communication system for MedDream. To store, archive, manage and view medical images. MedDream PACS Server 6.8.3.751 has a security loophole, which stems from the fact that the uploading of malicious PHP files at the upperloadImage.php endpoint is permitted and may result in remote code execution.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
MedDream
Published
2026-01-29
Last Modified
2026-02-24
References
https://meddream.com/products/meddream-pacs-server/ https://www.exploit-db.com/exploits/48853 https://www.vulncheck.com/advisories/meddream-pacs-server-remote-code-execution
Patch
https://meddream.com/products/meddream-pacs-server/#downloads
Share on: