CVE-2024-25386 Information

Description

Directory Traversal vulnerability in DICOM® Connectivity Framework by laurelbridge before v.2.7.6b allows a remote attacker to execute arbitrary code via the format_logfile.pl file.

Reference

https://sec.1i6w31fen9.top/2024/02/02/dcf-operations-window-remote-command-execute/ https://gist.github.com/Shulelk/15c9ba8d6b54dd4256a50a24ac7dd0a2