CVE-2025-35975 – MicroDicom DICOM Viewer Out-of-Bounds Write RCE

May 1, 2025

CVE ID : CVE-2025-35975

Published : May 1, 2025, 7:15 p.m. | 53 minutes ago

Description : MicroDicom DICOM Viewer is vulnerable to an out-of-bounds write which may allow an attacker to execute arbitrary code. The user must open a malicious DCM file for exploitation.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-32011 – KUNBUS PiCtory Authentication Bypass Vulnerability

Next Article CVE-2025-46568 – Stirling-PDF SSRF-Induced Arbitrary File Read Vulnerability

Highlights

CVE-2025-37819 – “Linux Kernel GICv2m Use After Free Vulnerability in irqchip”

May 8, 2025

CVE ID : CVE-2025-37819

Published : May 8, 2025, 7:15 a.m. | 58 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode()

With ACPI in place, gicv2m_get_fwnode() is registered with the pci
subsystem as pci_msi_get_fwnode_cb(), which may get invoked at runtime
during a PCI host bridge probe. But, the call back is wrongly marked as
__init, causing it to be freed, while being registered with the PCI
subsystem and could trigger:

Unable to handle kernel paging request at virtual address ffff8000816c0400
gicv2m_get_fwnode+0x0/0x58 (P)
pci_set_bus_msi_domain+0x74/0x88
pci_register_host_bridge+0x194/0x548

This is easily reproducible on a Juno board with ACPI boot.

Retain the function for later use.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

CVE-2025-35975 – MicroDicom DICOM Viewer Out-of-Bounds Write RCE

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization

Ferrari Just Launched an AI App That Lets Fans Experience F1 Like Never Before

Never Stop Exploring (July 2025 Wallpapers Edition)

The Gaming Desktop I’ve Relied on More Than Any Other Is More Powerful and Sleeker Than Ever — But Damn, It’s Expensive

CVE-2025-37819 – “Linux Kernel GICv2m Use After Free Vulnerability in irqchip”

Brennan Lee Mulligan Shirt

Intel’s Arrow Lake Refresh to Bring Copilot+ AI Powers & Faster Performance to Desktops This Year

CVE-2023-53129 – Linux Kernel – ext4 Directory Rename Deadlock Vulnerability

CVE-2025-35975 – MicroDicom DICOM Viewer Out-of-Bounds Write RCE

Related Posts