MS -Isac Cybersecurity Advisory - Several vulnerabilities in the PACS health server could allow the execution of the code remote - Patch now


MS-ISAC consultancy number:

2025-026

Published date (s):

03/14/2025

PREVIEW:

Several vulnerabilities have been discovered in Sante Pacs Server, the most serious of which could allow the execution of remote code. The successful exploitation of the most serious vulnerabilities could allow the execution of remote code in the context of the system. According to the privileges associated with the system, an attacker could then install programs; Display, modify or delete data.

Threat intelligence:

There is currently no report of these vulnerabilities exploited in the wild.

RISK:

Government:

Large and medium government entitiesN/A

Small governmentMEDIUM

Large and medium business entitiesHIGH

Small business entitiesMEDIUM

Leave a Reply

Your email address will not be published. Required fields are marked *

Related News

CISA publishes seven advice on industrial control systemsCISA publishes seven advice on industrial control systems

CISA publishes seven advice on industrial control systems

July 1, 2025
Several vulnerabilities in Citrix products could allow the disclosure of sensitive dataSeveral vulnerabilities in Citrix products could allow the disclosure of sensitive data

Several vulnerabilities in Citrix products could allow the disclosure of sensitive data

June 27, 2025

You may have missed

CISA publishes seven advice on industrial control systemsCISA publishes seven advice on industrial control systems

CISA publishes seven advice on industrial control systems

July 1, 2025
Several vulnerabilities in Citrix products could allow the disclosure of sensitive dataSeveral vulnerabilities in Citrix products could allow the disclosure of sensitive data

Several vulnerabilities in Citrix products could allow the disclosure of sensitive data

June 27, 2025
CISA publishes five advice from industrial control systemsCISA publishes five advice from industrial control systems

CISA publishes five advice from industrial control systems

June 17, 2025
Ransomware actors use unrefined surveillance and remote management to compromise the provider of public services billing softwareRansomware actors use unrefined surveillance and remote management to compromise the provider of public services billing software

Ransomware actors use unrefined surveillance and remote management to compromise the provider of public services billing software

June 12, 2025
Several vulnerabilities in Adobe products could allow an arbitrary code executionSeveral vulnerabilities in Adobe products could allow an arbitrary code execution

Several vulnerabilities in Adobe products could allow an arbitrary code execution

June 10, 2025
Cisa publishes four reviews of industrial control systemsCisa publishes four reviews of industrial control systems

Cisa publishes four reviews of industrial control systems

June 10, 2025