CVE-2013-6825
CVE-2013-6825 is a high-severity vulnerability in Offis Dcmtk with a CVSS 2.0 base score of 7.2. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-264.
Key facts
- Severity: High (CVSS 2.0 base score 7.2)
- EPSS exploit prediction: 0% (39th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-264
- Affected product: Offis Dcmtk
- Published:
- Last modified:
Description
(1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/scp.cc, (4) dcmwlm/libsrc/wlmactmg.cc, (5) dcmprscp.cc and (6) dcmpsrcv.cc in dcmpstat/apps/, (7) dcmpstat/tests/msgserv.cc, and (8) dcmqrdb/apps/dcmqrscp.cc in DCMTK 3.6.1 and earlier does not check the return value of the setuid system call, which allows local users to gain privileges by creating a large number of processes.
Frequently asked questions
- What is CVE-2013-6825?
- (1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/scp.cc, (4) dcmwlm/libsrc/wlmactmg.cc, (5) dcmprscp.cc and (6) dcmpsrcv.cc in dcmpstat/apps/, (7) dcmpstat/tests/msgserv.cc, and (8) dcmqrdb/apps/dcmqrscp.cc in DCMTK 3.6.1 and earlier does not check the return value of the setuid system call, which allows local users to gain privileges by creating a large number of processes.
- How severe is CVE-2013-6825?
- CVE-2013-6825 has a CVSS 2.0 base score of 7.2, rated high severity.
- Is CVE-2013-6825 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (39th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2013-6825?
- CVE-2013-6825 primarily affects Offis Dcmtk. In total, 7 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2013-6825?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2013-6825 published?
- CVE-2013-6825 was published on 2014-06-10 and last updated on 2026-06-17.
References
- http://git.dcmtk.org/web?p=dcmtk.git%3Ba=blob%3Bf=CHANGES.361
- http://packetstormsecurity.com/files/126883/DCMTK-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2014/Jun/11
- http://secunia.com/advisories/58916
- http://www.securityfocus.com/archive/1/532261/100/0/threaded
- http://www.securityfocus.com/bid/67784
Affected products (7)
- cpe:2.3:a:offis:dcmtk:*:*:*:*:*:*:*:*
- cpe:2.3:a:offis:dcmtk:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:offis:dcmtk:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:offis:dcmtk:3.5.2a:*:*:*:*:*:*:*
- cpe:2.3:a:offis:dcmtk:3.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:offis:dcmtk:3.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:offis:dcmtk:3.6.0:*:*:*:*:*:*:*
More vulnerabilities in Offis Dcmtk
- CVE-2019-1010228 — Critical (CVSS 9.8): OFFIS.de DCMTK 3.6.3 and below is affected by: Buffer Overflow. The impact is: Possible code execution and confirmed…
- CVE-2024-52333 — High (CVSS 8.4): An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A…
- CVE-2024-47796 — High (CVSS 8.4): An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially…
- CVE-2024-27628 — High (CVSS 8.1): Buffer Overflow vulnerability in DCMTK v.3.6.8 allows an attacker to execute arbitrary code via the EctEnhancedCT…
- CVE-2025-25475 — High (CVSS 7.5): A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial…
- CVE-2024-28130 — High (CVSS 7.5): An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS…
All CVEs affecting Offis Dcmtk →
Other CWE-264 (Permissions, Privileges, and Access Controls) vulnerabilities
- CVE-2016-8363 — Critical (CVSS 10.0): An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232…
- CVE-2016-7457 — Critical (CVSS 10.0): VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to gain privileges, or halt…
- CVE-2015-7425 — Critical (CVSS 10.0): The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data…
- CVE-2015-8267 — Critical (CVSS 10.0): The PasswordReset.Controllers.ResetController.ChangePasswordIndex method in PasswordReset.dll in Dovestones AD Self…
- CVE-2015-7919 — Critical (CVSS 10.0): SearchBlox 8.3 before 8.3.1 allows remote attackers to write to the config file, and consequently cause a denial of…
- CVE-2015-7071 — Critical (CVSS 10.0): The File Bookmark component in Apple OS X before 10.11.2 allows attackers to bypass a sandbox protection mechanism for…
Browse all CWE-264 (Permissions, Privileges, and Access Controls) vulnerabilities →