CVE-2024-42845

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-42845

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42845.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-42845

Downstream

DEBIAN-CVE-2024-42845

UBUNTU-CVE-2024-42845

Published

2024-08-23T19:15:06Z

Modified

2025-09-19T15:07:16.828293Z

Summary

[none]

Details

An eval Injection vulnerability in the component invesalius/reader/dicom.py of InVesalius 3.1.99991 through 3.1.99998 allows attackers to execute arbitrary code via loading a crafted DICOM file.

References

Affected packages

Git / github.com/invesalius/invesalius3

Affected ranges

Type: GIT
Repo: https://github.com/invesalius/invesalius3
Events: Introduced

82be8627bf49122179937c640eb40b330969d181

Last affected

69e1b105d7c1f3345cbe47f0102b504bd5601dba

Affected versions

3.*

3.1.99992

v3.*

v3.1.99991

v3.1.99992

v3.1.99993

v3.1.99994

v3.1.99995

v3.1.99996

v3.1.99997

v3.1.99998