CVE-2024-33606

HIGH Year: 2024
CVSS v3 Score
8.8
High
Weakness Type
CWE-939
View all →

Vulnerability Description

An attacker could retrieve sensitive files (medical images) as well as plant new medical images or overwrite existing medical images on a MicroDicom DICOM Viewer system. User interaction is required to exploit this vulnerability.

Related Vulnerabilities

CVE-2023-43582

HIGH
CVSS:8.8(High)

Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.

CWE-9392023

CVE-2023-43582

HIGH
CVSS:8.8(High)

Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.

CWE-9392023

CVE-2020-11000

MEDIUM
CVSS:6.5(Medium)

GreenBrowser before version 1.2 has a vulnerability where apps that rely on URL Parsing to verify that a given URL is pointing to a trust server may be susceptible to many different ways to get URL pa...

CWE-9392020

CVE-2022-20736

MEDIUM
CVSS:5.3(Medium)

A vulnerability in the web-based management interface of Cisco AppDynamics Controller Software could allow an unauthenticated, remote attacker to access a configuration file and the login page for an ...

CWE-9392022

CVE-2024-35298

MEDIUM
CVSS:4.3(Medium)

Improper authorization in handler for custom URL scheme issue in 'ZOZOTOWN' App for Android versions prior to 7.39.6 allows an attacker to lead a user to access an arbitrary website via another applic...

CWE-9392024

CVE-2024-45203

MEDIUM
CVSS:4.3(Medium)

Improper authorization in handler for custom URL scheme issue in "@cosme" App for Android versions prior 5.69.0 and "@cosme" App for iOS versions prior to 6.74.0 allows an attacker to lead a user to a...

CWE-9392024