Security Advisory

CVE-2025-54817

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-20 14:50:10

Last updated 2026-01-21 15:58:22

Assigner talos

State PUBLISHED

Description

A reflected cross-site scripting (xss) vulnerability exists in the autoPurge functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious url can lead to arbitrary javascript code execution. An attacker can provide a URL to a malicious website to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗