A high-severity heap-based buffer overflow in the vtk-dicom library poses a risk of arbitrary code execution when processing malformed DICOM data.

This vulnerability resides in the vtkDICOMItem::NewDataElement function, which fails to properly handle memory allocation during the processing of DICOM elements. An attacker providing a specially crafted DICOM file could trigger a heap-based buffer overflow, potentially leading to a crash or remote code execution.

With a CVSS score of 8.1, this vulnerability represents a significant risk to systems that process medical imaging data. Successful exploitation could lead to system instability, denial of service, or unauthorized code execution, potentially exposing sensitive Protected Health Information (PHI) to unauthorized actors.

Immediate Action: Update the vtk-dicom library to the latest secure version provided by the vendor immediately.

Proactive Monitoring: Monitor application crash logs for frequent heap-related errors and review system access logs for anomalies during the processing of DICOM files.

Compensating Controls: Ensure that systems processing DICOM files are isolated within a secure network segment and utilize input validation to sanitize data before passing it to the vtk-dicom library.

Public Exploit Available: false

Organizations using VTK and the vtk-dicom library in medical imaging environments must prioritize this update. Immediate patching is necessary to prevent potential exploitation that could lead to clinical system downtime or unauthorized access to sensitive medical data.