nvd-json-data-feeds/CVE-2025/CVE-2025-22xx/CVE-2025-2263.json

{
  "id": "CVE-2025-2263",
  "sourceIdentifier": "vulnreport@tenable.com",
  "published": "2025-03-13T17:15:38.617",
  "lastModified": "2025-03-14T14:15:19.660",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "During login to the web server in \"Sante PACS Server.exe\", OpenSSL function EVP_DecryptUpdate is called to decrypt the username and password. A fixed 0x80-byte stack-based buffer is passed to the function as the output buffer. A stack-based buffer overflow exists if a long encrypted username or password is supplied by an unauthenticated remote attacker."
    },
    {
      "lang": "es",
      "value": "Al iniciar sesi\u00f3n en el servidor web en \"Sante PACS Server.exe\", se llama a la funci\u00f3n OpenSSL EVP_DecryptUpdate para descifrar el nombre de usuario y la contrase\u00f1a. Se pasa a la funci\u00f3n un b\u00fafer fijo de pila de 0x80 bytes como b\u00fafer de salida. Se produce un desbordamiento de b\u00fafer de pila si un atacante remoto no autenticado proporciona un nombre de usuario o una contrase\u00f1a cifrados largos."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "vulnreport@tenable.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9
      }
    ]
  },
  "weaknesses": [
    {
      "source": "vulnreport@tenable.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-121"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://www.tenable.com/security/research/tra-2025-08",
      "source": "vulnreport@tenable.com"
    },
    {
      "url": "https://www.tenable.com/security/research/tra-2025-08",
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
    }
  ]
}
Auto-Update: 2025-03-13T19:00:21.384229+00:00 2025-03-13 19:03:49 +00:00			`{`
			`"id": "CVE-2025-2263",`
			`"sourceIdentifier": "vulnreport@tenable.com",`
			`"published": "2025-03-13T17:15:38.617",`
Auto-Update: 2025-03-14T15:00:20.376870+00:00 2025-03-14 15:03:49 +00:00			`"lastModified": "2025-03-14T14:15:19.660",`
Auto-Update: 2025-03-23T03:00:20.104511+00:00 2025-03-23 03:03:54 +00:00			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2025-03-13T19:00:21.384229+00:00 2025-03-13 19:03:49 +00:00			`"cveTags": [],`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "During login to the web server in \"Sante PACS Server.exe\", OpenSSL function EVP_DecryptUpdate is called to decrypt the username and password. A fixed 0x80-byte stack-based buffer is passed to the function as the output buffer. A stack-based buffer overflow exists if a long encrypted username or password is supplied by an unauthenticated remote attacker."`
Auto-Update: 2025-03-14T15:00:20.376870+00:00 2025-03-14 15:03:49 +00:00			`},`
			`{`
			`"lang": "es",`
			`"value": "Al iniciar sesi\u00f3n en el servidor web en \"Sante PACS Server.exe\", se llama a la funci\u00f3n OpenSSL EVP_DecryptUpdate para descifrar el nombre de usuario y la contrase\u00f1a. Se pasa a la funci\u00f3n un b\u00fafer fijo de pila de 0x80 bytes como b\u00fafer de salida. Se produce un desbordamiento de b\u00fafer de pila si un atacante remoto no autenticado proporciona un nombre de usuario o una contrase\u00f1a cifrados largos."`
Auto-Update: 2025-03-13T19:00:21.384229+00:00 2025-03-13 19:03:49 +00:00			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV31": [`
			`{`
			`"source": "vulnreport@tenable.com",`
			`"type": "Secondary",`
			`"cvssData": {`
			`"version": "3.1",`
			`"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",`
			`"baseScore": 9.8,`
			`"baseSeverity": "CRITICAL",`
			`"attackVector": "NETWORK",`
			`"attackComplexity": "LOW",`
			`"privilegesRequired": "NONE",`
			`"userInteraction": "NONE",`
			`"scope": "UNCHANGED",`
			`"confidentialityImpact": "HIGH",`
			`"integrityImpact": "HIGH",`
			`"availabilityImpact": "HIGH"`
			`},`
			`"exploitabilityScore": 3.9,`
			`"impactScore": 5.9`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "vulnreport@tenable.com",`
			`"type": "Secondary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-121"`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "https://www.tenable.com/security/research/tra-2025-08",`
			`"source": "vulnreport@tenable.com"`
Auto-Update: 2025-03-14T15:00:20.376870+00:00 2025-03-14 15:03:49 +00:00			`},`
			`{`
			`"url": "https://www.tenable.com/security/research/tra-2025-08",`
			`"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"`
Auto-Update: 2025-03-13T19:00:21.384229+00:00 2025-03-13 19:03:49 +00:00			`}`
			`]`
			`}`