CVE-2025-10350

UNKNOWN 0.0

SQL injection in CGM NETRAAD

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

SQL Injection vulnerability in "imageserver" module when processing C-FIND queries in CGM NETRAAD software allows attacker connected to PACS gaining access to database, including data processed by GCM CLININET software.This issue affects CGM NETRAAD with imageserver module in versions before 7.9.0.

CWE	CWE-89
Vendor	cgm
Product	cgm netraad
Published	Mar 2, 2026
Last Updated	Mar 2, 2026

Stay Ahead of the Next One

Get instant alerts for cgm cgm netraad

Be the first to know when new unknown vulnerabilities affecting cgm cgm netraad are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

CGM / CGM NETRAAD

0 < 7.9.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

cert.pl: https://cert.pl/en/posts/2026/03/CVE-2025-10350/ cgm.com: https://www.cgm.com/pol_pl/products/szpital/cgm-netraad.html

Credits

Maciej Kazulak