Full Report
A new day, a new menace for cyber defenders. A novel vulnerability in Medixant RadiAnt DICOM Viewer—a popular PACS DICOM viewer for medical imaging—allows hackers to execute machine-in-the-middle (MitM) attacks. GitHub reports that by late 2024, an average of 115 CVEs were disclosed daily, with a 124% rise in cyberattacks exploiting vulnerabilities in Q3 2024. […] The post CVE-2025-1001 Vulnerability in Medixant RadiAnt DICOM Viewer Enables Threat Actors to Perform Machine-in-the-Middle Attacks appeared first on SOC Prime.
Analysis Summary
# Vulnerability: Medixant RadiAnt DICOM Viewer MitM Attack Vulnerability
## CVE Details
- CVE ID: CVE-2025-1001
- CVSS Score: Not explicitly provided, implied high severity due to MiTM capability.
- CWE: Not specified in the summary provided.
## Affected Systems
- Products: Medixant RadiAnt DICOM Viewer
- Versions: Prior to v2025.1
- Configurations: Unknown/General installation.
## Vulnerability Description
The vulnerability in Medixant RadiAnt DICOM Viewer allows a threat actor to conduct Machine-in-the-Middle (MiTM) attacks. The exact technical vector is not fully detailed in the summary, but its result is the enablement of MiTM activities against the viewer's communications.
## Exploitation
- Status: No evidence of exploitation in the wild currently.
- Complexity: Not explicitly stated, but MiTM attacks often require some level of network access or control.
- Attack Vector: Implied Network, as MiTM attacks typically occur over network traffic interception.
## Impact
- Confidentiality: Potentially High (If credentials or sensitive medical data are intercepted).
- Integrity: Potentially High (If intercepted data can be modified).
- Availability: Unknown, but likely Low unless related to service disruption.
## Remediation
### Patches
- Upgrade to product version **v2025.1 or later**.
### Workarounds
- Prevent updates from being applied by **disabling the display of available updates** via the specific command provided by the vendor (command itself is not detailed in this summary).
## Detection
- Indicators of Compromise (IOCs): Not explicitly provided.
- Detection Methods and Tools: Organizations are encouraged to leverage platforms like the SOC Prime Platform for threat intelligence and detection capabilities.
## References
- Vendor Advisory: https://www.radiantviewer.com/c/security-advisory-cve-2025-1001/
- SOC Prime Article: https://socprime.com/blog/cve-2025-1001-medixant-radiant-dicom-viewer-vulnerability/