← Back to home
ICSMA-24-065-01  ·  Published 2024-03-05  ·  View on CISA ICS-CERT ↗

Santesoft Sante FFT Imaging

CVSS 7.8 HIGH

Risk Summary

Successful exploitation of this vulnerability could allow a local attacker to execute arbitrary code once a user opens a malicious DCM file on affected FFT Imaging installations.

CVEs (1)

Remediations

  • Santesoft released an updated version of their product and recommends users update Sante FFT Imaging to v1.4.2 or later.
  • CISA recommends users take the following measures to protect themselves from social engineering attacks:
  • Do not click web links or open attachments in unsolicited email messages.
  • Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams.
  • Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.

Affected Vendors

Santesoft

Affected Products (1)

Santesoft · Sante FFT Imaging <=1.4.1

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more