Orthanc versions before 1.12.10 are affected by an authorisation logic …
Orthanc versions before 1.12.10 are affected by an authorisation logic flaw in the application's HTTP Basic Authentication implementation. Successful exploitation could result in Privilege Escalation, potentially allowing full administrative access.
References
Affected products
orthanc
- =<1.12.9
Matching in nixpkgs
pkgs.orthanc
Orthanc is a lightweight, RESTful DICOM server for healthcare and medical research
pkgs.orthanc-framework
SDK for building Orthanc plugins and related applications
pkgs.orthanc-plugin-dicomweb
Plugin that extends Orthanc with support for the DICOMweb protocols
pkgs.python312Packages.pyorthanc
Python library that wraps the Orthanc REST API
pkgs.python313Packages.pyorthanc
Python library that wraps the Orthanc REST API
pkgs.python314Packages.pyorthanc
Python library that wraps the Orthanc REST API
Package maintainers
-
@drupol Pol Dellaiera <pol.dellaiera@protonmail.com>
-
@dvcorreia Diogo Correia <dv_correia@hotmail.com>
-
@bcdarwin Ben Darwin <bcdarwin@gmail.com>