CVE-2020-37009

HIGH

MedDream PACS Server 6.8.3.751 - Authenticated RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-37009. PoCs published by bzyo.

AI-analyzed exploit summary This exploit targets MedDream PACS Server 6.8.3.751, leveraging authenticated file upload to achieve remote code execution. It uploads a PHP shell and executes arbitrary commands via a predictable upload path.

Description

MedDream PACS Server 6.8.3.751 contains an authenticated remote code execution vulnerability that allows authorized users to upload malicious PHP files. Attackers can exploit the uploadImage.php endpoint by authenticating and uploading a PHP shell to execute arbitrary system commands with elevated privileges.

Exploits (1)

exploitdb WORKING POC
by bzyo · pythonwebappsphp
https://www.exploit-db.com/exploits/48853

This exploit targets MedDream PACS Server 6.8.3.751, leveraging authenticated file upload to achieve remote code execution. It uploads a PHP shell and executes arbitrary commands via a predictable upload path.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: MedDream PACS Server 6.8.3.751
Auth required
Prerequisites: Valid credentials for the MedDream PACS Server · Network access to the target · PHP file upload capability
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/48853

Scores

CVSS v3 8.8
EPSS 0.0052
EPSS Percentile 40.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-434
Status published
Published Jan 29, 2026
Tracked Since Feb 18, 2026