Vulnerabilities > Santesoft > Sante Pacs Server > 4.1.0

DATE CVE VULNERABILITY TITLE RISK
2025-03-13 CVE-2025-2263 Out-of-bounds Write vulnerability in Santesoft Sante Pacs Server 4.1.0
During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is called to decrypt the username and password.
network
low complexity
santesoft CWE-787
critical
 9.8
9.8
2025-03-13 CVE-2025-2264 Path Traversal vulnerability in Santesoft Sante Pacs Server 4.1.0
A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe".
network
low complexity
santesoft CWE-22
7.5
7.5