Vulnerabilities > CVE-2024-1696 - Unspecified vulnerability in Santesoft FFT Imaging 1.4.1

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

santesoft

NVD

Published: 2024-03-11

Updated: 2025-02-18

Summary

In Santesoft Sante FFT Imaging versions 1.4.1 and prior once a user opens a malicious DCM file on affected FFT Imaging installations, a local attacker could perform an out-of-bounds write, which could allow for arbitrary code execution.

Vulnerable Configurations

Part	Description	Count
Application	Santesoft Santesoft FFT Imaging - Santesoft FFT Imaging 1.4.1	2

References

https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-065-01
https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-065-01