Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

MedDream — Vulnerabilities & Security Advisories 39

Browse all 39 CVE security advisories affecting MedDream. AI-powered Chinese analysis, POCs, and references for each vulnerability.

MedDream operates as a web-based Picture Archiving and Communication System (PACS) and radiology information system, primarily serving healthcare institutions for medical image storage and distribution. Security audits reveal a significant history of vulnerabilities, with thirty-nine Common Vulnerabilities and Exposures (CVEs) currently documented. The most prevalent flaw classes include remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and weak authentication mechanisms. These defects allow attackers to potentially compromise patient data integrity or gain unauthorized administrative access to critical imaging infrastructure. While specific large-scale public breaches are not widely publicized, the high volume of disclosed CVEs indicates persistent security hygiene issues within the software’s architecture. Organizations utilizing this platform must prioritize rigorous patch management and network segmentation to mitigate the risk of exploitation, given the sensitive nature of the protected health information processed by the system.

Found 4 results / 39Clear Filters
Top products by MedDream: MedDream PACS Premium PACS Server WEB DICOM Viewer MedDream PACS Server
CVE IDTitleCVSSSeverityPublished
CVE-2025-3481 MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — PACS ServerCWE-121 9.8AICriticalAI2025-05-22
CVE-2025-3482 MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — PACS ServerCWE-121 9.8AICriticalAI2025-05-22
CVE-2025-3483 MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — PACS ServerCWE-121 9.8AICriticalAI2025-05-22
CVE-2025-3484 MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — PACS ServerCWE-121 9.8AICriticalAI2025-05-22

This page lists every published CVE security advisory associated with MedDream. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.