Metrics
Affected Vendors & Products
Source | ID | Title |
---|---|---|
![]() |
EUVD-2025-28568 | Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user to a malicious webpage and stealing the user's cookie. |
Solution
Santesoft recommends users update PACS Server to Version 4.2.3 or later https://santesoft.com/win/sante-pacs-server/download.html .
Workaround
No workaround given by the vendor.
Fri, 17 Oct 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:santesoft:sante_pacs_server:*:*:*:*:*:*:*:* |
Thu, 21 Aug 2025 12:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Santesoft
Santesoft sante Pacs Server |
|
Vendors & Products |
Santesoft
Santesoft sante Pacs Server |
Tue, 19 Aug 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Mon, 18 Aug 2025 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user to a malicious webpage and stealing the user's cookie. | |
Title | Santesoft Sante PACS Server Cross-site Scripting | |
Weaknesses | CWE-79 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: icscert
Published:
Updated: 2025-08-19T19:22:23.058Z
Reserved: 2025-08-05T22:22:55.593Z
Link: CVE-2025-54759

Updated: 2025-08-19T19:22:20.402Z

Status : Analyzed
Published: 2025-08-18T22:15:28.500
Modified: 2025-10-17T17:02:47.203
Link: CVE-2025-54759

No data.

Updated: 2025-08-21T12:32:04Z