CVE-2025-35975: 
MicroDicom DICOM Viewer vulnerability analysis and mitigation

MicroDicom DICOM Viewer is vulnerable to an out-of-bounds write vulnerability identified as CVE-2025-35975. The vulnerability was discovered and reported by Michael Heinzl to CISA, and affects all versions up to 2025.1 (Build 3321). This security flaw requires user interaction, specifically opening a malicious DCM file, to be exploited (CISA Advisory).

The vulnerability is classified as an out-of-bounds write (CWE-787) with a CVSS v3.1 base score of 8.8 (vector string: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) and a CVSS v4.0 base score of 8.6 (vector string: AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N). The vulnerability is remotely exploitable with low attack complexity, though it requires user interaction (CISA Advisory, Wiz).

Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the affected system. The vulnerability poses significant risks to healthcare organizations worldwide that use the MicroDicom DICOM Viewer for medical imaging (CISA Advisory, Wiz).

MicroDicom recommends users update DICOM Viewer to version 2025.2 or later. CISA advises organizations to minimize network exposure for all control system devices, ensure they are not accessible from the internet, locate control system networks behind firewalls, and isolate them from business networks. When remote access is required, use secure methods such as VPNs, while ensuring they are updated to the most current version (CISA Advisory).