MicroDicom DICOM Viewer version 2024.03
fails to adequately verify the update server's certificate, which could make it possible for attackers in a privileged network position to alter network traffic and carry out a machine-in-the-middle (MITM) attack. This allows the attackers to modify the server's response and deliver a malicious update to the user.
References
Configurations
No configuration.
History
10 Feb 2025, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-02-10 21:15
Updated : 2025-02-10 21:15
NVD link : CVE-2025-1002
Mitre link : CVE-2025-1002
CVE.ORG link : CVE-2025-1002
JSON object : View
Products Affected
No product.
CWE
CWE-295
Improper Certificate Validation