OTPulse
FeedAboutContact

Santesoft Sante DICOM Viewer Pro

Plan Patch7.8ICS-CERT ICSMA-25-148-01May 29, 2025
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary

Santesoft Sante DICOM Viewer Pro versions 14.2.1 and earlier contain an out-of-bounds read vulnerability (CWE-125) that could allow an attacker to disclose information or execute arbitrary code. The vulnerability is exploitable only through user interaction with a crafted DICOM file.

What this means
What could happen
An attacker could cause an unpatched DICOM viewer to crash or execute malicious code by convincing a user to open a specially crafted DICOM medical image file, potentially compromising the workstation and access to patient or operational data.
Who's at risk
This affects any facility using Santesoft Sante DICOM Viewer Pro for diagnostic imaging or medical record review, including hospital workstations, radiology departments, and any clinical staff who review medical images. The vulnerability requires user interaction, so the risk is primarily to individual workstations rather than network-wide systems.
How it could be exploited
An attacker would need to deliver a malicious DICOM file to a user of Sante DICOM Viewer Pro. The user must then open the file in the vulnerable application. When the viewer processes the crafted file, the out-of-bounds read could disclose sensitive information from memory or be leveraged to achieve code execution on that workstation.
Prerequisites
  • User with access to Sante DICOM Viewer Pro must open a crafted DICOM file
  • Sante DICOM Viewer Pro version 14.2.1 or earlier must be installed
low complexityuser interaction requiredno patch available
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (1)
ProductAffected VersionsFix Status
Sante DICOM Viewer Pro: <=14.2.1≤ 14.2.1v14.2.2
Remediation & Mitigation
0/4
Do now
0/2
WORKAROUNDRestrict user access to opening DICOM files only from trusted internal sources; implement email filtering to block unsolicited attachments containing DICOM files
HARDENINGProvide user awareness training on avoiding opening files from untrusted sources, especially files received via email
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpgrade Sante DICOM Viewer Pro to version 14.2.2 or later
Long-term hardening
0/1
HARDENINGIsolate DICOM viewer workstations from internet-facing network segments and restrict outbound connectivity
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/d2059eca-d7cf-4cf6-96a7-6b22b6df9367
Santesoft Sante DICOM Viewer Pro | CVSS 7.8 - OTPulse