3 matches found
CVE-2022-46306
CVE-2022-46306 affects ChangingTec ServiSign. The vulnerability is a path traversal caused by insufficient filtering of special characters in the DLL file path, enabling an unauthenticated attacker to host a malicious website that causes the component to load arbitrary DLL files, potentially enab...
CVE-2022-46304
CVE-2022-46304 affects the ChangingTec ServiSign component. The root cause is insufficient filtering for special characters in the connection response parameter, enabling an unauthenticated remote attacker to host a malicious website that a component user visits, triggering command injection. Thi...
CVE-2022-46305
The CVE-2022-46305 entry describes a path traversal vulnerability in the ChangingTec ServiSign component. An unauthenticated LAN attacker can bypass authentication and access arbitrary system files. The public details consistently identify the vulnerable component and the impact, but do not provi...