CVE-2021-41689

moderate-risk

Published 2022-06-28

DCMTK through 3.6.6 does not handle string copy properly. Sending specific requests to the dcmqrdb program, it would query its database and copy the result even if the result is null, which can incur a head-based overflow. An attacker can use it to launch a DoS attack.

Do I need to act?

0.11% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (1)

Dcmtk

Affected Vendors

Offis

References (7)

Product https://github.com/DCMTK/dcmtk

Patch https://github.com/DCMTK/dcmtk/commit/5c14bf53fb42ceca12bbcc0016e8704b1580920d

https://lists.debian.org/debian-lts-announce/2024/06/msg00022.html

Product https://github.com/DCMTK/dcmtk

Patch https://github.com/DCMTK/dcmtk/commit/5c14bf53fb42ceca12bbcc0016e8704b1580920d

https://lists.debian.org/debian-lts-announce/2024/06/msg00022.html

https://lists.debian.org/debian-lts-announce/2025/01/msg00032.html

/ 100

moderate-risk

Severity 26/34 · High

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal