Vulnerability in Orthanc Dicom Server
CVE-2026-5443
A heap buffer overflow vulnerability exists during the decoding of `PALETTE COLOR` DICOM images. Pixel length validation uses 32-bit multiplication for width and height calculations. If these values overflow, the validation check incorrect…
EPSS: 0.001 (21.0th percentile) — read the EPSS interpretation.
Affected products
- Orthanc Dicom Server — versions 0