From securityaffairs.co
![Reflected XSS Canon Medical](https://i0.wp.com/securityaffairs.co/wordpress/wp-content/uploads/2022/10/Reflected-XSS-bugs-in-Canon-Medical-Vitrea-View-could-expose-patient-info.jpg?resize=527%2C276&ssl=1)
During a penetration test, Trustwave Spiderlabs’ researchers discovered two reflected cross-site scripting (XSS) vulnerabilities, collectively as CVE-2022-37461, in third-party software for Canon Medical’s Vitrea View. The Vitrea View tool allows viewing and securely share medical images through the DICOM standard.