Vulnerability in Orthanc Dicom Server
CVE-2026-5445
An out-of-bounds read vulnerability exists in the `DecodeLookupTable` function within `DicomImageDecoder.cpp`. The lookup-table decoding logic used for `PALETTE COLOR` images does not validate pixel indices against the lookup table size. C…
EPSS: 0.001 (21.0th percentile) — read the EPSS interpretation.
Affected products
- Orthanc Dicom Server — versions 0