You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-54551
About this tag
CVE-2025-54551 is a privilege-escalation vulnerability in FUJIFILM Healthcare Americas Synapse Mobility, a web-based medical imaging viewer used in hospitals and imaging centers. The flaw allows remote attackers to bypass role-based access controls by manipulating an assumed-immutable web parameter (CWE-472), potentially exposing protected DICOM imaging data. CISA issued an emergency medical advisory urging upgrades to version 8.2 or later and implementing short-term mitigations to reduce risk. This tag covers discussions about the vulnerability, its impact on healthcare environments, and recommended remediation steps.
CISA’s August 21, 2025 advisory bundle added three urgent entries to the growing list of industrial control system (ICS) and medical-device vulnerabilities security teams must treat as high priority this month. The agency published advisories for a denial-of-service vector in the Mitsubishi...
air conditioning controllers
cisa
cve-2025-3699
cve-2025-54551
cve-2025-5514
denial of service
fujifilm
ics
industrial control systems
ip filtering
medical devices
melsec iq-f
mitsubishi electric
network segmentation
patch management
security bypass
synapse
vulnerability
web interface
FUJIFILM Healthcare Americas’ Synapse Mobility contains a web-parameter privilege-escalation flaw—tracked as CVE-2025-54551—that can be exploited remotely to bypass role-based access controls and expose protected imaging data, and CISA’s emergency medical advisory urges immediate upgrades to...