Known Vulnerabilities for products from OFFIS
Listed below are 13 of the newest known vulnerabilities associated with the vendor "OFFIS".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-10194 json | Not Provided | 2026-05-31 | 2026-05-31 | |
| CVE-2026-5663 json | A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfSt... | Not Provided | 2026-04-06 | 2026-04-27 |
| CVE-2022-43272 json | DCMTK v3.6.7 was discovered to contain a memory leak via the T_ASC_Association object. | 7.5 - HIGH | 2022-12-02 | 2023-11-07 |
| CVE-2022-4981 json | A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList ... | Not Provided | 2025-10-21 | 2026-04-29 |
| CVE-2022-2121 json | OFFIS DCMTK's (All versions prior to 3.6.7) has a NULL pointer dereference vulnerability while processing DICOM files, which ... | 6.5 - MEDIUM | 2022-06-24 | 2022-07-05 |
| CVE-2022-2120 json | OFFIS DCMTK's (All versions prior to 3.6.7) service class user (SCU) is vulnerable to relative path traversal, allowing an at... | 9.8 - CRITICAL | 2022-06-24 | 2022-07-05 |
| CVE-2022-2119 json | OFFIS DCMTK's (All versions prior to 3.6.7) service class provider (SCP) is vulnerable to path traversal, allowing an attacke... | 9.8 - CRITICAL | 2022-06-24 | 2022-07-05 |
| CVE-2021-41690 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-06-28 | 2022-07-06 |
| CVE-2021-41689 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-06-28 | 2022-07-06 |
| CVE-2021-41688 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-06-28 | 2022-07-06 |
| CVE-2021-41687 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-06-28 | 2022-07-06 |
| CVE-2020-36855 json | A security vulnerability has been detected in DCMTK up to 3.6.5. The affected element is the function parseQuota of the compo... | Not Provided | 2025-10-21 | 2026-04-29 |
| CVE-2019-1010228 json | OFFIS.de DCMTK 3.6.3 and below is affected by: Buffer Overflow. The impact is: Possible code execution and confirmed Denial o... | 9.8 - CRITICAL | 2019-07-22 | 2023-11-07 |
| CVE-2013-6825 json | (1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/scp.cc, (4) dcmwlm/libsrc/wlmactmg.cc, (5) dcmprscp.cc ... | Not Provided | 2014-06-10 | 2026-05-06 |
Known software with vulnerabilities from OFFIS
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Offis | Dcmtk | 3.1.0 |