Vulnerabilities > CVE-2025-2263 - Out-of-bounds Write vulnerability in Santesoft Sante Pacs Server 4.1.0

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

santesoft

CWE-787

critical

NVD

Published: 2025-03-13

Updated: 2025-04-03

Summary

During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is called to decrypt the username and password. A fixed 0x80-byte stack-based buffer is passed to the function as the output buffer. A stack-based buffer overflow exists if a long encrypted username or password is supplied by an unauthenticated remote attacker.

Vulnerable Configurations

Part	Description	Count
Application	Santesoft Santesoft Sante Pacs Server 4.1.0	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.tenable.com/security/research/tra-2025-08
https://www.tenable.com/security/research/tra-2025-08