CVE-2024-1453 Santesoft CVE debrief

Who should care

Healthcare organizations using Sante DICOM Viewer Pro for medical imaging, radiology departments, medical device security teams, and clinical workstation administrators should prioritize patching this vulnerability due to the potential for arbitrary code execution in environments handling sensitive patient data.

Technical summary

Sante DICOM Viewer Pro versions 14.0.3 and prior contain a vulnerability that can be triggered when a user opens a maliciously crafted DICOM file. Successful exploitation allows a local attacker to achieve information disclosure or arbitrary code execution. The attack requires user interaction (opening the file) but does not require elevated privileges. The CVSS 3.1 vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H indicates a local attack vector with low attack complexity, no privileges required, user interaction required, and high impacts to confidentiality, integrity, and availability.

Defensive priority

HIGH

Recommended defensive actions

• Update Sante DICOM Viewer Pro to version 14.0.4 or later as provided by the vendor
• Train users to avoid opening DICOM files from untrusted sources
• Implement email security controls to block unsolicited attachments
• Apply defense-in-depth strategies for medical imaging workstation environments

Evidence notes

CISA published advisory ICSMA-24-058-01 on February 27, 2024, identifying this vulnerability in Sante DICOM Viewer Pro versions 14.0.3 and prior. The advisory confirms Santesoft released version 14.0.4 as a fix.

Official resources