Summary: A critical vulnerability (CVE-2025-0896) affecting Orthanc servers poses significant risks to healthcare data and operations, enabling unauthorized access due to default settings not requiring authentication. Although CISA has issued advisories, there have reportedly been no known attacks exploiting this vulnerability. Users are urged to upgrade their systems and ensure strong configurations to protect sensitive medical information.
Affected: Orthanc servers in the healthcare and public health sector
Keypoints :
- CVE-2025-0896 allows remote attackers to exploit Orthanc servers, compromising sensitive medical information.
- Security experts note this vulnerability could lead to manipulation of patient data and critical health imaging files.
- Organizations are advised to upgrade to Orthanc version 1.5.8 or later and ensure authentication is enabled when remote access is configured.
Views: 7
简体中文
Nederlands
Français
Bahasa Indonesia
日本語
Português