Vulnerabilities ›

CVE-2026-5663

High

CWE-77 — Weakness Type

                    Published: Apr 6, 2026                      ·  Modified: Apr 13, 2026                      ·  Source: NVD                

CVSS v3

7.3

🔗 NVD Official

📄 Description (English)

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible. The patch is named edbb085e45788dccaf0e64d71534cfca925784b8. Applying a patch is the recommended action to fix this issue.

🤖 AI Executive Summary

CVE-2026-5663 is a critical OS command injection vulnerability in OFFIS DCMTK up to version 3.7.0 affecting the storescp component, allowing remote attackers to execute arbitrary commands. The vulnerability exists in the executeOnReception and executeOnEndOfStudy functions within dcmnet/apps/storescp.cc and requires immediate patching.

📄 Description (Arabic)

يؤثر هذا الثغر الأمني على وظائف معالجة استقبال الصور الطبية DICOM في تطبيق storescp من مكتبة OFFIS DCMTK. يسمح الثغر للمهاجمين البعيدين بحقن أوامر نظام التشغيل من خلال معالجة البيانات المرسلة عند استقبال الدراسات الطبية أو نهايتها.

🤖 ملخص تنفيذي (AI)

A remote command injection flaw has been identified in OFFIS DCMTK versions up to 3.7.0 in the storescp application, enabling attackers to execute arbitrary OS commands. This vulnerability affects DICOM image storage operations and poses significant risk to healthcare infrastructure managing medical imaging data.

🤖 AI Intelligence Analysis Analyzed: May 7, 2026 05:16

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

healthcare government

🎯 MITRE ATT&CK Techniques

T1059.001 T1190 T1203

⚖️ Saudi Risk Score (AI)

8.0

/ 10.0

🔧 Remediation Steps (English)

Immediately upgrade OFFIS DCMTK to version 3.7.1 or later, or apply patch edbb085e45788dccaf0e64d71534cfca925784b8. Restrict network access to storescp services using firewall rules, implement input validation for all DICOM operations, and monitor for suspicious command execution patterns in logs.

🔧 خطوات المعالجة (العربية)

قم بترقية OFFIS DCMTK إلى الإصدار 3.7.1 أو أحدث فوراً، أو طبق التصحيح edbb085e45788dccaf0e64d71534cfca925784b8. قيّد الوصول إلى خدمات storescp باستخدام جدران الحماية، وطبق التحقق من صحة المدخلات لجميع عمليات DICOM، وراقب أنماط تنفيذ الأوامر المريبة في السجلات.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.9.1.1 A.12.6.1 A.14.2.1

🔵 SAMA CSF

ID.BE-5 PR.AC-3 PR.PT-1

🟡 ISO 27001:2022

A.12.2.1 A.12.6.1 A.14.2.1

🔗 References & Sources 6

🔗

https://github.com/DCMTK/dcmtk/commit/edbb085e45788dccaf0e64d71534cfca925784b8

cna@vuldb.com

🔗

https://machinespirits.com/advisory/2e1627/

cna@vuldb.com

🔗

https://support.dcmtk.org/redmine/issues/1194

cna@vuldb.com

🔗

https://vuldb.com/submit/786061

cna@vuldb.com

🔗

https://vuldb.com/vuln/355486

cna@vuldb.com

🔗

https://vuldb.com/vuln/355486/cti

cna@vuldb.com

📊 CVSS Score

7.3

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityL — Low / Local

IntegrityL — Low / Local

AvailabilityL — Low / Local

📋 Quick Facts

Severity High

CVSS Score7.3

CWECWE-77

EPSS1.05%

Exploit No

Patch ✗ No

Published 2026-04-06

Source Feed nvd

🇸🇦 Saudi Risk Score

8.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-77

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-5663

💬 Comments

Introduce Yourself

Sign In Required