writeups.xyz / CVE-2023-33466 - Exploiting Healthcare Servers with Polyglot Files

Submitter : c2a

Date: 24 October 2023

Bounty : undisclosed

Vulnerabilities :

• DICOM
• RCE
• Arbitrary File Overwrite
• Arbitrary File Upload
• Patch Diffing

Programs :

• Asus

Authors :

• TheZero (@Th3Zer0)
• Suidpit (@Suidpit)

Link :
https://www.shielder.com/blog/2023/10/cve-2023-33466-exploiting-healthcare-servers-with-polyglot-files/