SB2025031745 - Multiple vulnerabilities in Sante PACS Server
Published: March 17, 2025 Updated: February 17, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Stack-based buffer overflow (CVE-ID: CVE-2025-2263)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in the EVP_DecryptUpdate function. A remote unauthenticated attacker can trigger a stack-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
2) Path traversal (CVE-ID: CVE-2025-2264)
The vulnerability allows a remote attacker to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences in "Sante PACS Server.exe". A remote attacker can send a specially crafted HTTP request and read arbitrary files on the system.
3) Use of Password Hash With Insufficient Computational Effort (CVE-ID: CVE-2025-2265)
The vulnerability allows a local user to compromise the target system.
The vulnerability exists due to use of a weak hash algorithm in "Sante PACS Server.exe". A local user can decode credentials and gain unauthenticated access to the system.
4) Access of Uninitialized Pointer (CVE-ID: CVE-2025-2284)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to use of uninitialized pointer in the "GetWebLoginCredentials" function in "Sante PACS Server.exe". A remote attacker can cause a denial of service condition on the target system.
Remediation
Install update from vendor's website.