← Back

Osimis Web Viewer

osimis_web_viewer

Vendor: Orthanc Server • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-7238
1Orthanc Server
1Osimis Web Viewer
Nov 21, 2024
Jan 23, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A XSS payload can be uploaded as a DICOM study and when a user tries to view the infected study inside the Osimis WebViewer the XSS vulnerability gets triggered. If exploited, the attacker will be able to execute arbitr...Show more
A XSS payload can be uploaded as a DICOM study and when a user tries to view the infected study inside the Osimis WebViewer the XSS vulnerability gets triggered. If exploited, the attacker will be able to execute arbitrary JavaScript code inside the victim's browser. Show less