CVE-2025-32731 is a reflected Cross-Site Scripting (XSS) vulnerability identified in MedDream PACS Premium version 7.3.5.860, specifically within the radiationDoseReport.php functionality. This vulnerability arises due to improper neutralization of input during web page generation (CWE-79), allowing an attacker to craft a malicious URL that, when visited by a user, executes arbitrary JavaScript code in the context of the victim's browser session. The vulnerability is classified as reflected XSS, meaning the malicious script is not stored on the server but reflected off a web page in response to a crafted request. Exploitation requires no authentication (AV:N), has low attack complexity (AC:L), and requires user interaction (UI:R) since the victim must click or visit the malicious URL. The scope is changed (S:C), indicating that the vulnerability can affect resources beyond the vulnerable component, potentially impacting the confidentiality and integrity of data accessible through the application. The CVSS v3.1 base score is 6.1, categorized as medium severity. The impact includes potential theft of session cookies, user impersonation, redirection to malicious sites, or execution of unauthorized actions within the PACS web interface. MedDream PACS Premium is a Picture Archiving and Communication System widely used in medical imaging environments to store and manage radiology images and reports. The radiationDoseReport.php page likely displays radiation dose information, which may contain sensitive patient data. No known exploits are currently reported in the wild, and no patches or mitigation links have been provided yet.

For European organizations, especially healthcare providers and hospitals using MedDream PACS Premium, this vulnerability poses a significant risk to patient data confidentiality and integrity. Successful exploitation could lead to unauthorized access to sensitive medical imaging data or manipulation of radiation dose reports, undermining clinical decision-making and patient safety. Additionally, the execution of arbitrary JavaScript could facilitate session hijacking, enabling attackers to impersonate legitimate users and potentially access other parts of the PACS system or connected hospital networks. Given the stringent data protection regulations in Europe, such as GDPR, a breach involving patient data could result in severe legal and financial consequences. The reflected XSS nature means phishing or social engineering campaigns could be used to lure medical staff into clicking malicious URLs, increasing the attack surface. The medium severity rating indicates a moderate but non-trivial risk that requires timely attention to prevent exploitation.

European healthcare organizations should implement the following specific mitigations: 1) Immediately restrict access to the radiationDoseReport.php page to trusted internal networks or authenticated users only, if not already enforced. 2) Employ web application firewalls (WAFs) with custom rules to detect and block suspicious URL parameters targeting the radiationDoseReport.php endpoint. 3) Conduct input validation and output encoding on all user-supplied data reflected in web pages, particularly URL parameters, to neutralize malicious scripts. 4) Educate medical staff about the risks of clicking on unsolicited or suspicious links, especially those purporting to be related to medical reports. 5) Monitor web server logs for unusual URL patterns or spikes in requests to radiationDoseReport.php that may indicate exploitation attempts. 6) Engage with MedDream for timely patches or updates and plan for rapid deployment once available. 7) Consider implementing Content Security Policy (CSP) headers to restrict the execution of inline scripts and reduce XSS impact. 8) Regularly audit and test the PACS web interface for similar vulnerabilities to proactively identify and remediate issues.