Home/Product/meddream pacs server
Product

meddream pacs server

38 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-58095
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58094
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58093
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58092
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58091
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58090
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58089
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58088
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58087
all versions
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6
6.1MEDIUM
 CVE-2025-58080
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7App functionality of MedDream PACS Premium 7.3.6.870.
6.1MEDIUM
 CVE-2025-57881
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyEmail functionality of MedDream PACS Premium 7.3.6.870. A
6.1MEDIUM
 CVE-2025-57787
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A
6.1MEDIUM
 CVE-2025-57786
all versions
A reflected cross-site scripting (xss) vulnerability exists in the notifynewstudy functionality of MedDream PACS Premium 7.3.6.870
6.1MEDIUM
 CVE-2025-55071
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyAnonymize functionality of MedDream PACS Premium 7.3.6.87
6.1MEDIUM
 CVE-2025-54861
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyCoercion functionality of MedDream PACS Premium 7.3.6.870
6.1MEDIUM
 CVE-2025-54853
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyUser functionality of MedDream PACS Premium 7.3.6.870. A
6.1MEDIUM
 CVE-2025-54852
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyAeTitle functionality of MedDream PACS Premium 7.3.6.870.
6.1MEDIUM
 CVE-2025-54817
all versions
A reflected cross-site scripting (xss) vulnerability exists in the autoPurge functionality of MedDream PACS Premium 7.3.6.870. A s
6.1MEDIUM
 CVE-2025-54814
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopurgeFilter functionality of MedDream PACS Premium 7.
6.1MEDIUM
 CVE-2025-54778
all versions
A reflected cross-site scripting (xss) vulnerability exists in the existingUser functionality of MedDream PACS Premium 7.3.6.870.
6.1MEDIUM
 CVE-2025-54495
all versions
A reflected cross-site scripting (xss) vulnerability exists in the emailfailedjob functionality of MedDream PACS Premium 7.3.6.870
6.1MEDIUM
 CVE-2025-54157
all versions
A reflected cross-site scripting (xss) vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.87
6.1MEDIUM
 CVE-2025-53912
all versions
An arbitrary file read vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A specially c
9.6CRITICAL
 CVE-2025-53854
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premium 7.3.6.870
6.1MEDIUM
 CVE-2025-53707
all versions
A reflected cross-site scripting (xss) vulnerability exists in the modifyTranscript functionality of MedDream PACS Premium 7.3.6.8
6.1MEDIUM
 CVE-2025-53516
all versions
A reflected cross-site scripting (xss) vulnerability exists in the downloadZip functionality of MedDream PACS Premium 7.3.6.870. A
6.1MEDIUM
 CVE-2025-46270
all versions
A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.
6.1MEDIUM
 CVE-2025-44000
all versions
A reflected cross-site scripting (xss) vulnerability exists in the sendOruReport functionality of MedDream PACS Premium 7.3.6.870.
6.1MEDIUM
 CVE-2025-36556
all versions
A reflected cross-site scripting (xss) vulnerability exists in the ldapUser functionality of MedDream PACS Premium 7.3.6.870. A sp
6.1MEDIUM
 CVE-2025-32731
all versions
A reflected cross-site scripting (xss) vulnerability exists in the radiationDoseReport.php functionality of meddream PACS
6.1MEDIUM
 CVE-2025-27724
all versions
A privilege escalation vulnerability exists in the login.php functionality of meddream PACS Premium 7.3.3.840. A speciall
9.3CRITICAL
 CVE-2025-26469
all versions
An incorrect default permissions vulnerability exists in the CServerSettings::SetRegistryValues functionality of MedDream PACS Pre
9.3CRITICAL
 CVE-2025-24485
all versions
A server-side request forgery vulnerability exists in the cecho.php functionality of MedDream PACS Premium 7.3.5.860. A specially
5.8MEDIUM
 CVE-2025-3484
< 7.3.5.860
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows
9.8CRITICAL
 CVE-2025-3483
< 7.3.5.860
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows
7.8HIGH
 CVE-2025-3482
< 7.3.5.860
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows
7.8HIGH
 CVE-2025-3481
< 7.3.5.860
MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows
7.8HIGH
 CVE-2025-3480
all versions
MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows ne
6.5MEDIUM
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh