2 matches found
CVE-2022-46304 ChangingTec ServiSign - Command Injection
ChangingTec ServiSign component has insufficient filtering for special characters in the connection response parameter. An unauthenticated remote attacker can host a malicious website for the component user to access, which triggers command injection and allows the attacker to execute arbitrary...
CVE-2022-46304
CVE-2022-46304 affects the ChangingTec ServiSign component. The root cause is insufficient filtering for special characters in the connection response parameter, enabling an unauthenticated remote attacker to host a malicious website that a component user visits, triggering command injection. Thi...