Vulnerabilities > Santesoft > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-03-13 CVE-2025-2263 Out-of-bounds Write vulnerability in Santesoft Sante Pacs Server 4.1.0
During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is called to decrypt the username and password.
network
low complexity
santesoft CWE-787
critical
 9.8
9.8
2022-08-03 CVE-2022-2272 Unspecified vulnerability in Santesoft Sante Pacs Server 3.0.4
This vulnerability allows remote attackers to bypass authentication on affected installations of Sante PACS Server 3.0.4.
network
low complexity
santesoft
critical
 9.8
9.8