Orthanc-server Orthanc — known CVE vulnerabilities
Every CVE whose affected-product data names Orthanc-server Orthanc, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2026-5442 — CVSS 9.8 (critical): A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation (VR)…
CVE-2025-0896 — CVSS 9.8 (critical): Orthanc server prior to version 1.5.8 does not enable basic authentication by default when remote access is enabled. This could result in…
CVE-2026-5443 — CVSS 9.8 (critical): A heap buffer overflow vulnerability exists during the decoding of `PALETTE COLOR` DICOM images. Pixel length validation uses 32-bit…
CVE-2026-5445 — CVSS 9.1 (critical): An out-of-bounds read vulnerability exists in the `DecodeLookupTable` function within `DicomImageDecoder.cpp`. The lookup-table decoding…
CVE-2023-33466 — CVSS 8.8 (high): Orthanc before 1.12.0 allows authenticated users with access to the Orthanc API to overwrite arbitrary files on the file system, and in…
CVE-2026-5438 — CVSS 7.5 (high): A gzip decompression bomb vulnerability exists when Orthanc processes HTTP request with `Content-Encoding: gzip`. The server does not…
CVE-2026-5440 — CVSS 7.5 (high): A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the `Content-Length` header. The server allocates…
CVE-2026-5439 — CVSS 7.5 (high): A memory exhaustion vulnerability exists in ZIP archive processing. Orthanc automatically extracts ZIP archives uploaded to certain…
CVE-2026-5437 — CVSS 7.5 (high): An out-of-bounds read vulnerability exists in `DicomStreamReader` during DICOM meta-header parsing. When processing malformed metadata…
CVE-2026-5441 — CVSS 7.1 (high): An out-of-bounds read vulnerability exists in the `DecodePsmctRle1` function of `DicomImageDecoder.cpp`. The `PMSCT_RLE1` decompression…
CVE-2026-5444 — CVSS 7.1 (high): A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM…
CVE-2024-22725 — CVSS 6.1 (medium): Orthanc versions before 1.12.2 are affected by a reflected cross-site scripting (XSS) vulnerability. The vulnerability was present in the…