18 matches found
CVE-2022-39060
ChangingTech MegaServiSignAdapter component has a vulnerability of improper input validation. An unauthenticated remote attacker can exploit this vulnerability to access and modify HKEYCURRENTUSER subkey ex: AutoRUN in Registry where malicious scripts can be executed to take control of the system...
CVE-2022-39061
ChangingTech MegaServiSignAdapter component has a vulnerability of Out-of-bounds Read due to insufficient validation for parameter length. An unauthenticated remote attacker can exploit this vulnerability to access partial sensitive content in memory and disrupts partial services...
CVE-2022-39061
ChangingTech MegaServiSignAdapter component has a vulnerability of Out-of-bounds Read due to insufficient validation for parameter length. An unauthenticated remote attacker can exploit this vulnerability to access partial sensitive content in memory and disrupts partial services...
CVE-2022-39059
ChangingTech MegaServiSignAdapter component has a path traversal vulnerability within its file reading function. An unauthenticated remote attacker can exploit this vulnerability to access arbitrary system files...
CVE-2022-39059
ChangingTech MegaServiSignAdapter component has a path traversal vulnerability within its file reading function. An unauthenticated remote attacker can exploit this vulnerability to access arbitrary system files...
Path traversal
ChangingTech MegaServiSignAdapter component has a path traversal vulnerability within its file reading function. An unauthenticated remote attacker can exploit this vulnerability to access arbitrary system files...
Input validation
ChangingTech MegaServiSignAdapter component has a vulnerability of improper input validation. An unauthenticated remote attacker can exploit this vulnerability to access and modify HKEYCURRENTUSER subkey ex: AutoRUN in Registry where malicious scripts can be executed to take control of the system...
CVE-2022-39059
CVE-2022-39059 affects ChangingTech MegaServiSignAdapter. The file-reading function has a path traversal vulnerability that can be exploited by an unauthenticated remote attacker to read arbitrary system files. CVSSv3.1 base score 7.5 (HIGH); attack vector NETWORK, complexity LOW, privileges NONE...
CVE-2022-39061 ChangingTec MegaServiSignAdapter - Out-of-bounds Read
ChangingTech MegaServiSignAdapter component has a vulnerability of Out-of-bounds Read due to insufficient validation for parameter length. An unauthenticated remote attacker can exploit this vulnerability to access partial sensitive content in memory and disrupts partial services...
CVE-2022-39060
ChangingTech MegaServiSignAdapter has a vulnerability in improper input validation that can be exploited remotely by an unauthenticated attacker to access and modify the HKEY_CURRENT_USER registry (e.g., AutoRUN). This could allow execution of malicious scripts to take control of the system or te...
PT-2023-13679 · Changingtec · Changingtech Megaservisignadapter
Name of the Vulnerable Software and Affected Versions: ChangingTech MegaServiSignAdapter affected versions not specified Description: The ChangingTech MegaServiSignAdapter component has a path traversal vulnerability within its file reading function. An unauthenticated remote attacker can exploit...
CVE-2022-39059 ChangingTec MegaServiSignAdapter - Path Traversal
ChangingTech MegaServiSignAdapter component has a path traversal vulnerability within its file reading function. An unauthenticated remote attacker can exploit this vulnerability to access arbitrary system files...
CVE-2022-39060 ChangingTec MegaServiSignAdapter - Improper Input Validation
ChangingTech MegaServiSignAdapter component has a vulnerability of improper input validation. An unauthenticated remote attacker can exploit this vulnerability to access and modify HKEYCURRENTUSER subkey ex: AutoRUN in Registry where malicious scripts can be executed to take control of the system...
CVE-2022-39061
CVE-2022-39061 affects ChangingTech’s MegaServiSignAdapter. The issue is an Out-of-bounds Read caused by insufficient validation for parameter length, enabling an unauthenticated remote attacker to access partial sensitive content in memory and disrupt partial services. CVSSv3.1 base score is 6.5...
PT-2023-13681 · Changingtec · Megaservisignadapter
Name of the Vulnerable Software and Affected Versions: ChangingTech MegaServiSignAdapter affected versions not specified Description: The issue is related to an Out-of-bounds Read vulnerability due to insufficient validation for parameter length. An unauthenticated remote attacker can exploit thi...
PT-2023-13680 · Changingtec · Changingtech Megaservisignadapter
Name of the Vulnerable Software and Affected Versions: ChangingTech MegaServiSignAdapter affected versions not specified Description: The issue is related to improper input validation in the ChangingTech MegaServiSignAdapter component. An unauthenticated remote attacker can exploit this to access...
CVE-2022-39060 ChangingTec MegaServiSignAdapter - Improper Input Validation
ChangingTech MegaServiSignAdapter component has a vulnerability of improper input validation. An unauthenticated remote attacker can exploit this vulnerability to access and modify HKEYCURRENTUSER subkey ex: AutoRUN in Registry where malicious scripts can be executed to take control of the system...
CVE-2022-39061 ChangingTec MegaServiSignAdapter - Out-of-bounds Read
ChangingTech MegaServiSignAdapter component has a vulnerability of Out-of-bounds Read due to insufficient validation for parameter length. An unauthenticated remote attacker can exploit this vulnerability to access partial sensitive content in memory and disrupts partial services...