CVE-2025-3480 – MedDream WEB DICOM Viewer Information Disclosure (Cleartext Transmission of Credentials)

May 22, 2025

CVE ID : CVE-2025-3480

Published : May 22, 2025, 1:15 a.m. | 1 hour, 35 minutes ago

Description : MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of MedDream WEB DICOM Viewer. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the Web Portal. The issue results from the lack of encryption when transmitting credentials. An attacker can leverage this vulnerability to disclose transmitted credentials, leading to further compromise. Was ZDI-CAN-25842.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3881 – eCharge Hardy Barth cPH2 NTP Command Injection Remote Code Execution

Next Article CVE-2025-2759 – GStreamer Privilege Escalation Vulnerability

A Week In The Life Of An AI-Augmented Designer

This week in AI updates: Gemini Code Assist Agent Mode, GitHub’s Agents panel, and more (August 22, 2025)

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

I found the ultimate MacBook Air alternative for Windows users – and it’s priced well

Outdated IT help desks are holding businesses back – but there is a solution

Android’s latest update can force apps into dark mode – how to see it now

I tried the Google Pixel Watch 4 – and these key features made it feel indispensable

Building Cross-Platform Alerts with Laravel’s Notification Framework

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

How to install OpenPlatform — IoT platform

Basics of Digital Forensics

Basics of Digital Forensics

Top Linux Server Automation Tools: Simplifying System Administration

Rising from the Ashes: How AlmaLinux and Rocky Linux Redefined the Post-CentOS Landscape

CVE-2025-3480 – MedDream WEB DICOM Viewer Information Disclosure (Cleartext Transmission of Credentials)

“What happens online stays online” and other cyberbullying myths, debunked

The need for speed: Why organizations are turning to rapid, trustworthy MDR

4 headphones I swear by (and how I use each pair differently)

Distribution Release: Network Security Toolkit 42-14476

CVE-2025-43559 – ColdFusion Code Injection Vulnerability

Microsoft admits issues in Windows 11 June 2025 Update with Print to PDF

CVE-2025-40583 – SCALANCE LPE9403 Cleartext Sensitive Information Transmission

ASUS G14 Bulked Up for 2025—Still Sexy, Just a Bit Chonkier

From ELIZA to Conversation Modeling: Evolution of Conversational AI Systems and Paradigms

Langflow Under Attacks: CVE-2025-3248 Exploited to Deliver Stealthy Flodrix Botnet

CVE-2025-3480 – MedDream WEB DICOM Viewer Information Disclosure (Cleartext Transmission of Credentials)

Related Posts