A high-severity vulnerability exists within multiple PACS products, specifically identified in MedDream PACS Server. This flaw allows an unauthenticated attacker to gain unauthorized access to the underlying database, potentially leading to a significant breach of sensitive Protected Health Information (PHI) and disruption of clinical services. Immediate patching is required to mitigate the risk of data exfiltration and regulatory non-compliance.

The vulnerability is an unauthenticated SQL Injection flaw in the login functionality of the MedDream PACS Server. An attacker can exploit this by sending a specially crafted HTTP request to the login page, manipulating the username parameter with malicious SQL commands. Because the application fails to properly sanitize this user-supplied input, the attacker's commands are executed directly by the database, allowing them to bypass authentication and gain unauthorized access to view, modify, or delete sensitive patient data stored within the PACS system.

This vulnerability is rated as High severity with a CVSS score of 8.8. Successful exploitation could have severe consequences for the organization, including a major breach of Protected Health Information (PHI), which violates regulatory compliance standards like HIPAA. This can result in substantial financial penalties, legal action, and significant reputational damage. Furthermore, an attacker could potentially alter or delete patient imaging data, directly impacting patient care and disrupting critical clinical workflows that rely on the PACS system.

Immediate Action: Apply vendor-supplied security updates to all affected PACS servers immediately. Prioritize these systems for patching due to the high severity of the vulnerability. After patching, review server and database access logs for any signs of compromise that may have occurred prior to remediation.

Proactive Monitoring: Implement enhanced monitoring on affected systems. Security teams should inspect web server and database logs for suspicious queries, particularly against login pages, that contain SQL syntax such as UNION, SELECT, ' OR '1'='1, or other common injection payloads. Monitor network traffic for unusual data egress from the PACS server, which could indicate data exfiltration.

Compensating Controls: If immediate patching is not feasible, deploy a Web Application Firewall (WAF) with a ruleset configured to detect and block SQL injection attacks. Additionally, restrict network access to the PACS server's management interface, allowing connections only from trusted internal IP addresses to limit the attack surface.

Public Exploit Available: true

Given the high CVSS score, the critical nature of the affected systems (PACS), and the public availability of exploit code, this vulnerability poses a significant and immediate risk to the organization. We strongly recommend that the vendor-supplied patches be applied on an emergency basis. If patching is delayed for any reason, compensating controls such as a WAF and network access restrictions must be implemented without delay to reduce the risk of a data breach involving sensitive patient information.