We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
An incorrect default permissions vulnerability exists in the CServerSettings::SetRegistryValues functionality of MedDream PACS Premium 7.3.3.840. A specially crafted application can decrypt credentials stored in a configuration-related registry key. An attacker can execute a malicious script or application to exploit this vulnerability.
Reserved 2025-02-28 | Published 2025-07-28 | Updated 2025-07-28 | Assigner talosCWE-732: Incorrect Permission Assignment for Critical Resource
Discovered by Emmanuel Tacheau of Cisco Talos.
talosintelligence.com/vulnerability_reports/TALOS-2025-2154
Support options
