CVE-2018-25113

Public Exploit

Dicoogle PACS Web Server 2.5.0 Unauthenticated Path Traversal

Description

An unauthenticated path traversal vulnerability exists in Dicoogle PACS Web Server version 2.5.0 and possibly earlier. The vulnerability allows remote attackers to read arbitrary files on the underlying system by sending a crafted request to the /exportFile endpoint using the UID parameter. Successful exploitation can reveal sensitive files accessible by the web server user.

References

Link	Tags
https://www.exploit-db.com/exploits/45007	exploit
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/dicoogle_traversal.rb	exploit
https://www.fortiguard.com/encyclopedia/ips/46527/dicoogle-pacs-web-server-directory-traversal	third party advisory
https://www.vulncheck.com/advisories/dicoogle-pacs-web-server-path-traversal	third party advisory

Frequently Asked Questions

What is the severity of CVE-2018-25113?: CVE-2018-25113 has been scored as a high severity vulnerability.
How to fix CVE-2018-25113?: To fix CVE-2018-25113, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2018-25113 being actively exploited in the wild?: It is possible that CVE-2018-25113 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2018-25113?: CVE-2018-25113 affects Dicoogle Project PACS Web Server.

Description

Category

CWE-22 – Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

References

Frequently Asked Questions