Home/Product/santesoft sante pacs server
Product

santesoft sante pacs server

16 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-54862
< 4.2.3
Sante PACS Server web portal is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecti
5.4MEDIUM
 CVE-2025-54759
< 4.2.3
Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user t
6.1MEDIUM
 CVE-2025-54156
< 4.2.3
The Sante PACS Server Web Portal sends credential information without encryption.
7.4HIGH
 CVE-2025-53948
< 4.2.3
The Sante PACS Server allows a remote attacker to crash the main thread by sending a crafted HL7 message, causing a denial-of-serv
7.5HIGH
 CVE-2025-2264
all versions
A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attacker can ex
7.5HIGH
 CVE-2025-2263
all versions
During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is called to decrypt the username an
9.8CRITICAL
 CVE-2025-0574
< 4.0.10
Sante PACS Server URL path Memory Corruption Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create
7.5HIGH
 CVE-2025-0573
< 4.0.10
Sante PACS Server DCM File Parsing Directory Traversal Arbitrary File Write Vulnerability. This vulnerability allows remote attack
5.3MEDIUM
 CVE-2025-0572
< 4.0.10
Sante PACS Server Web Portal DCM File Parsing Directory Traversal Arbitrary File Write Vulnerability. This vulnerability allows re
4.3MEDIUM
 CVE-2025-0571
< 4.0.10
Sante PACS Server Web Portal DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. This vulnerability allows remote
6.5MEDIUM
 CVE-2025-0570
< 4.0.10
Sante PACS Server Web Portal DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. This vulnerability allows remote
6.5MEDIUM
 CVE-2025-0569
< 4.0.10
Sante PACS Server DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. This vulnerability allows remote attackers t
7.5HIGH
 CVE-2025-0568
< 4.0.10
Sante PACS Server DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. This vulnerability allows remote attackers t
7.5HIGH
 CVE-2023-51637
< 3.3.7
Sante PACS Server PG Patient Query SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers t
9.8CRITICAL
 CVE-2024-1863
< 3.3.6
Sante PACS Server Token Endpoint SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to
9.8CRITICAL
 CVE-2022-2272
all versions
This vulnerability allows remote attackers to bypass authentication on affected installations of Sante PACS Server 3.0.4. Authenti
9.8CRITICAL
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh