mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
1.0 KiB
1.0 KiB
CVE-2024-24793
Description
A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigger this vulnerability, an attacker would need to induce the vulnerable application to process a malicious DICOM image.The Use-After-Free happens in the parse_meta_element_create() parsing the elements in the File Meta Information header.
POC
Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2024-1931
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1931
Github
No PoCs found on GitHub currently.