CVE-2025-58087 – This vulnerability allows attackers to execute ... (How to Fix)

Q: What is the severity of CVE-2025-58087?

CVE-2025-58087 has a CVSS score of 6.1 (MEDIUM). This vulnerability allows attackers to execute arbitrary JavaScript code in users' browsers by tricking them into clicking specially crafted malicious URLs. It affects MedDream PACS Premium users through reflected cross-site scripting in the config.php functionality. The attack targets the status parameter and requires user interaction.

📋 TL;DR

This vulnerability allows attackers to execute arbitrary JavaScript code in users' browsers by tricking them into clicking specially crafted malicious URLs. It affects MedDream PACS Premium users through reflected cross-site scripting in the config.php functionality. The attack targets the status parameter and requires user interaction.

💻 Affected Systems

Products:

MedDream PACS Premium

Versions: 7.3.6.870

Operating Systems: All platforms running MedDream PACS Premium

Default Config Vulnerable: ⚠️ Yes

Notes: The vulnerability is in the config.php file's status parameter handling and affects the web interface.

📦 What is this software?

Pacs Server by Meddream

View all CVEs affecting Pacs Server →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal session cookies, perform actions as authenticated users, redirect to malicious sites, or install malware through drive-by downloads.

🟠

Likely Case

Session hijacking, credential theft, or defacement of the application interface through injected content.

🟢

If Mitigated

Limited impact if proper Content Security Policy (CSP) headers are implemented and input validation is enforced.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires user interaction (clicking malicious link) but no authentication. Attack vectors include phishing emails or malicious websites.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2271

Restart Required: No

Instructions:

1. Contact MedDream for patch availability. 2. Apply vendor-provided security update. 3. Test functionality after patching.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement proper input validation and output encoding for the status parameter in config.php

Modify config.php to sanitize $_GET['status'] parameter using htmlspecialchars() or similar functions

Content Security Policy

all

Implement strict CSP headers to prevent execution of inline JavaScript

Add header: Content-Security-Policy: default-src 'self'; script-src 'self'

🧯 If You Can't Patch

Implement web application firewall (WAF) rules to block XSS payloads in URL parameters
Restrict access to the vulnerable interface using network segmentation or authentication requirements

🔍 How to Verify

Check if Vulnerable:

Test by accessing config.php with a test payload like: /config.php?status=<script>alert('XSS')</script>

Check Version:

Check MedDream PACS Premium version in administration interface or configuration files

Verify Fix Applied:

Verify that script tags in the status parameter are properly encoded and not executed

📡 Detection & Monitoring

Log Indicators:

HTTP requests to config.php with script tags or JavaScript in status parameter
Unusual length or character patterns in status parameter values

Network Indicators:

URLs containing script tags or JavaScript code in query parameters
Requests to config.php from unexpected sources

SIEM Query:

source="web_logs" AND uri="*config.php*" AND query="*status=*script*"

📊 Metadata

CVE ID: CVE-2025-58087

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.04% exploit probability (10.6th percentile)

Published: January 20, 2026

Last Updated: January 29, 2026

🔗 References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2271 Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-58087, you might also want to check these: