Lucene search
K

32 matches found

Cvelist
Cvelist
added 2020/12/31 7:45 a.m.22 views

CVE-2020-25845 CHANGING Inc. NHIServiSignAdapter Windows Versions - Information Leakage -1

Multiple functions of NHIServiSignAdapter failed to verify the users’ file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential...

7.5CVSS7.5AI score0.00962EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/12/31 7:45 a.m.23 views

CVE-2020-25844 CHANGING Inc. NHIServiSignAdapter Windows Versions - Stack Overflow

The digest generation function of NHIServiSignAdapter has not been verified for parameter’s length, which leads to a stack overflow loophole. Remote attackers can use the leak to execute code without privilege...

8.1CVSS9.8AI score0.01895EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/12/31 7:45 a.m.19 views

CVE-2020-25843 CHANGING Inc. NHIServiSignAdapter Windows Versions - Heap Overflow

NHIServiSignAdapter fails to verify the length of digital credential files’ path which leads to a heap overflow loophole. Remote attackers can use the leak to execute code without privilege...

8.1CVSS9.8AI score0.01895EPSS
Exploits0References1
CVE
CVE
added 2020/12/31 7:45 a.m.48 views

CVE-2020-25844

The CVE-2020-25844 entry affects the NHIServiSignAdapter: the digest generation function is not verified for parameter length, causing a stack overflow. This could allow remote code execution with no privileges. Exploitation details are not provided in the supplied documents; no specific vulnerab...

9.8CVSS9.3AI score0.01895EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/12/31 7:45 a.m.39 views

CVE-2020-25843

CVE-2020-25843 affects NHIServiSignAdapter. The issue is a failure to verify the length of digital credential files’ path, leading to a heap overflow. This could allow remote attackers to execute code without privileges. Some sources list a high/critical impact (network attack, low/unknown auth) ...

9.8CVSS9.3AI score0.01895EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/31 7:45 a.m.24 views

CVE-2020-25842 CHANGING Inc. NHIServiSignAdapter Windows Versions - Arbitrary File Access

The encryption function of NHIServiSignAdapter fail to verify the file path input by users. Remote attacker can access arbitrary files through the flaw without privilege...

7.5CVSS7.6AI score0.00502EPSS
Exploits0References1
CVE
CVE
added 2020/12/31 7:45 a.m.42 views

CVE-2020-25842

The CVE-2020-25842 entry concerns NHIServiSignAdapter, where the encryption function fails to verify the file path input by users, enabling a remote attacker to access arbitrary files without privileges. Root cause: improper input/path validation. Impact: potential arbitrary file disclosure. The ...

7.5CVSS7.6AI score0.00502EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.6 views

NHIServiSignAdapter Access Control Error Vulnerability

Panorama NHIServiSignAdapter is a security control component for panoramic surveillance devices from China Panorama. A security vulnerability exists in NHIServiSignAdapter, which stems from an encryption feature that fails to validate user-entered file paths. A remote attacker can exploit this...

7.5CVSS5.9AI score0.00502EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.6 views

NHIServiSignAdapter Buffer Error Vulnerability

Panorama NHIServiSignAdapter is a security control component for panoramic surveillance devices from China Panorama. A security vulnerability exists in NHIServiSignAdapter that stems from a summary generation function that does not validate the length of a parameter, which results in a stack...

9.8CVSS6AI score0.01895EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.7 views

Panorama NHIServiSignAdapter Input Validation Error Vulnerability

Panorama NHIServiSignAdapter is a security control component for panoramic surveillance devices from China Panorama. A security vulnerability exists in NHIServiSignAdapter that stems from multiple functions failing to validate user file paths, resulting in SMB requests being redirected to a...

7.5CVSS5.8AI score0.00962EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.6 views

Panorama NHIServiSignAdapter Input Validation Error Vulnerability

Panorama NHIServiSignAdapter is a security control component for panoramic surveillance devices from China Panorama. A security vulnerability exists in NHIServiSignAdapter, which stems from a failure of the digest generation function to validate the path to the source file, resulting in SMB...

7.5CVSS5.8AI score0.00962EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/31 12:0 a.m.8 views

NHIServiSignAdapter Buffer Error Vulnerability

Panorama NHIServiSignAdapter is a security control component for panoramic surveillance devices from China Panorama. A security vulnerability exists in NHIServiSignAdapter that stems from a failure to validate the length of the path to a digital certificate file, which would result in a heap...

9.8CVSS6.1AI score0.01895EPSS
Exploits0References2
Rows per page
Query Builder