A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream PACS Premium 7.3.3.840. A specially crafted .php file can lead to elevated capabilities. An attacker can upload a malicious file to trigger this vulnerability.
https://blog.talosintelligence.com/wwbn-meddream-eclipse-vulnerabilities/
https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2156
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2156