2 matches found
CVE-2020-25843 CHANGING Inc. NHIServiSignAdapter Windows Versions - Heap Overflow
NHIServiSignAdapter fails to verify the length of digital credential files’ path which leads to a heap overflow loophole. Remote attackers can use the leak to execute code without privilege...
CVE-2020-25843
CVE-2020-25843 affects NHIServiSignAdapter. The issue is a failure to verify the length of digital credential files’ path, leading to a heap overflow. This could allow remote attackers to execute code without privileges. Some sources list a high/critical impact (network attack, low/unknown auth) ...