CVE-2022-32959 HiCOS’ client-side citizen digital certificate - Stack Buffer Overflow

🗓️ 20 Jul 2022 02:02:25Reported by twcertType

HiCOS client-side digital certificate buffer overflo

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2022-32959	12 Jul 202201:33	–	attackerkb
Circl	CVE-2022-32959	20 Jul 202207:41	–	circl
CNNVD	Hicos Citizen Certificate Client-side Component 安全漏洞	20 Jul 202200:00	–	cnnvd
CVE	CVE-2022-32959	20 Jul 202202:02	–	cve
EUVD	EUVD-2022-36025	3 Oct 202520:07	–	euvd
NVD	CVE-2022-32959	20 Jul 202202:15	–	nvd
OSV	CVE-2022-32959	20 Jul 202202:15	–	osv
Prion	Stack overflow	20 Jul 202202:15	–	prion
Positive Technologies	PT-2022-21607 · Hicos · Hicos	20 Jul 202200:00	–	ptsecurity

[
  {
    "platforms": [
      "Linux"
    ],
    "product": "HiCOS’ client-side citizen digital certificate",
    "vendor": "HINET",
    "versions": [
      {
        "lessThanOrEqual": "11 3.0.3.30306",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "Windows"
    ],
    "product": "HiCOS’ client-side citizen digital certificate",
    "vendor": "HINET",
    "versions": [
      {
        "lessThanOrEqual": "11 3.1.0.00002",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "macOS"
    ],
    "product": "HiCOS’ client-side citizen digital certificate",
    "vendor": "HINET",
    "versions": [
      {
        "lessThanOrEqual": "11 3.0.3.30404",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
twcert	www.twcert.org.tw/tw/cp-132-6290-738fe-1.html

20 Jul 2022 02:02Current

7.2High risk

Vulners AI Score7.2

CVSS 3.16.8

EPSS0.00216

CWE-787