CVE-2025-3480 – MedDream WEB DICOM Viewer Information Disclosure (Cleartext Transmission of Credentials)

May 22, 2025

CVE ID : CVE-2025-3480

Published : May 22, 2025, 1:15 a.m. | 1 hour, 35 minutes ago

Description : MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of MedDream WEB DICOM Viewer. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the Web Portal. The issue results from the lack of encryption when transmitting credentials. An attacker can leverage this vulnerability to disclose transmitted credentials, leading to further compromise. Was ZDI-CAN-25842.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3881 – eCharge Hardy Barth cPH2 NTP Command Injection Remote Code Execution

Next Article CVE-2025-2759 – GStreamer Privilege Escalation Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Sam Altman says ChatGPT’s viral Ghibli effect “forced OpenAI to do a lot of unnatural things”

How to get started with Microsoft Copilot on Windows 11

Microsoft blocks employees from sending emails that mention “Palestine” or “Gaza”

I missed out on the Clair Obscur: Expedition 33 Collector’s Edition but thankfully, the developers are launching something special

Perficient is Shaping the Future of Salesforce Innovation

Perficient is Shaping the Future of Salesforce Innovation

Opal – Optimizely’s AI-Powered Marketing Assistant

Content Compliance Without the Chaos: How Optimizely CMP Empowers Financial Services Marketers

Sam Altman says ChatGPT’s viral Ghibli effect “forced OpenAI to do a lot of unnatural things”

Sam Altman says ChatGPT’s viral Ghibli effect “forced OpenAI to do a lot of unnatural things”

How to get started with Microsoft Copilot on Windows 11

Microsoft blocks employees from sending emails that mention “Palestine” or “Gaza”

CVE-2025-3480 – MedDream WEB DICOM Viewer Information Disclosure (Cleartext Transmission of Credentials)

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-47512 – Tainacan Path Traversal

Error’d: Just a Taste

Nvidia’s 70+ projects at ICLR show how raw chip power is central to AI’s acceleration

Stanford Researchers Introduce OctoTools: A Training-Free Open-Source Agentic AI Framework Designed to Tackle Complex Reasoning Across Diverse Domains

Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations

PlayStation launches its Portal remote player in midnight black color

This AI Paper from China Introduces Reflection on search Trees (RoT): An LLM Reflection Framework Designed to Improve the Performance of Tree-Search-based Prompting Methods

Got a suspicious E-ZPass text? Don’t click the link (and what to do if you already did)

Google code confirms Gemini in Chrome copies Edge’s Copilot sidebar idea on Windows 11

CVE-2025-3480 – MedDream WEB DICOM Viewer Information Disclosure (Cleartext Transmission of Credentials)

Related Posts