Lucene search
K

11 matches found

NVD
NVD
added 2022/07/20 2:15 a.m.11 views

CVE-2022-32962

HiCOS’ client-side citizen certificate component has a double free vulnerability. An unauthenticated physical attacker can exploit this vulnerability to corrupt memory and execute arbitrary code, manipulate system data or terminate service...

6.8CVSS0.00219EPSS
Exploits0References1
Prion
Prion
added 2022/07/20 2:15 a.m.21 views

Double free

HiCOS’ client-side citizen certificate component has a double free vulnerability. An unauthenticated physical attacker can exploit this vulnerability to corrupt memory and execute arbitrary code, manipulate system data or terminate service...

4.6CVSS6.9AI score0.00219EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/07/20 2:3 a.m.15 views

CVE-2022-32962 HiCOS’ client-side citizen digital certificate - Double Free

HiCOS’ client-side citizen certificate component has a double free vulnerability. An unauthenticated physical attacker can exploit this vulnerability to corrupt memory and execute arbitrary code, manipulate system data or terminate service...

6.8CVSS7AI score0.00219EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/07/20 12:0 a.m.4 views

Hicos Citizen Certificate Client-side Component 安全漏洞

Hicos Citizen Certificate Client-side Component is a citizen certificate client-side component. A security vulnerability exists in the Hicos Citizen Certificate Client-side Component that stems from insufficient validation of parameter lengths for operating system information, which could be...

6.8CVSS7.1AI score0.0022EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/07/20 12:0 a.m.3 views

Hicos Citizen Certificate Client-side Component 资源管理错误漏洞

Hicos Citizen Certificate Client-side Component is a citizen certificate client-side component. A security vulnerability exists in the Hicos Citizen Certificate Client-side Component, which can be exploited by an unauthenticated attacker to corrupt memory and execute arbitrary code, manipulate...

6.8CVSS7AI score0.00219EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/07/20 12:0 a.m.5 views

Hicos Citizen Certificate Client-side Component 缓冲区错误漏洞

Hicos Citizen Certificate Client-side Component is a citizen certificate client-side component. A security vulnerability exists in the Hicos Citizen Certificate Client-side Component that stems from insufficient validation of the length of the parameters of a token message, which can be exploited...

6.8CVSS7AI score0.0022EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/12 1:33 a.m.4 views

CVE-2022-32960

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for card number. An unauthenticated physical attacker can exploit this vulnerability to execute arbitrary code, manipulate...

6.8CVSS6.5AI score0.0022EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/12 1:33 a.m.2 views

CVE-2022-32962

HiCOS’ client-side citizen certificate component has a double free vulnerability. An unauthenticated physical attacker can exploit this vulnerability to corrupt memory and execute arbitrary code, manipulate system data or terminate service...

6.8CVSS6AI score0.00219EPSS
Exploits0References2
Prion
Prion
added 2022/03/01 2:15 a.m.9 views

Command injection

Hicos citizen certificate client-side component does not filter special characters for command parameters in specific web URLs. An unauthenticated remote attacker can exploit this vulnerability to perform command injection attack to execute arbitrary system command, disrupt system or terminate...

10CVSS9.9AI score0.02981EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/03/01 1:55 a.m.52 views

CVE-2020-12775

CVE-2020-12775 affects the Hicos Citizen Certificate Client-side Component. The issue is that it does not filter special characters in command parameters within specific web URLs, enabling an unauthenticated remote attacker to perform a command injection and execute arbitrary system commands, pot...

10CVSS10AI score0.02981EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/03/01 1:55 a.m.18 views

CVE-2020-12775 Hicos citizen certificate client-side component - Command Injection

Hicos citizen certificate client-side component does not filter special characters for command parameters in specific web URLs. An unauthenticated remote attacker can exploit this vulnerability to perform command injection attack to execute arbitrary system command, disrupt system or terminate...

9.8CVSS10AI score0.02981EPSS
Exploits0References2
Rows per page
Query Builder