CVE-2025-36521 – MicroDicom DICOM Viewer Out-of-Bounds Read Vulnerability

May 1, 2025

CVE ID : CVE-2025-36521

Published : May 1, 2025, 7:15 p.m. | 53 minutes ago

Description : MicroDicom DICOM Viewer is vulnerable to an out-of-bounds read which may allow an attacker to cause memory corruption within the application. The user must open a malicious DCM file for exploitation.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleBuon 1° Maggio 2025

Next Article CVE-2025-35996 – KUNBUS PiCtory Stored Cross-Site Scripting (XSS)

Highlights

CVE-2025-4691 – “Free Booking Plugin for Hotels, Restaurants and Car Rentals – eaSYNC Booking Direct Object Reference Vulnerability”

May 31, 2025

CVE ID : CVE-2025-4691

Published : May 31, 2025, 12:15 p.m. | 1 hour, 28 minutes ago

Description : The Free Booking Plugin for Hotels, Restaurants and Car Rentals – eaSYNC Booking plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.3.21 via the ‘view_request_details’ due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to view the details of any booking request. The vulnerability was partially patched in versions 1.3.18 and 1.3.21.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-36521 – MicroDicom DICOM Viewer Out-of-Bounds Read Vulnerability

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

[Webinar] From Code to Cloud to SOC: Learn a Smarter Way to Defend Modern Applications

Of course you can already play WWE 2K25 as Mr. Iguana

CVE-2025-5846 – GitLab EE GraphQL Framework Assignment Vulnerability

Webkit Word is a text editor built with GTK4/Libadwaita

CVE-2025-4691 – “Free Booking Plugin for Hotels, Restaurants and Car Rentals – eaSYNC Booking Direct Object Reference Vulnerability”

Assiio fir nertoxize services

CVE-2025-38175 – Linux Kernel Binder UAF Vulnerability

CVE-2025-3998 – CodeAstro Membership Management System SQL Injection Vulnerability

CVE-2025-36521 – MicroDicom DICOM Viewer Out-of-Bounds Read Vulnerability

Related Posts