Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CHANGING Inc. NHIServiSignAdapter Windows Versions - Heap Overflow
Vulnerability Description
NHIServiSignAdapter fails to verify the length of digital credential files’ path which leads to a heap overflow loophole. Remote attackers can use the leak to execute code without privilege.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
NHIServiSignAdapter 缓冲区错误漏洞
Vulnerability Description
全景 NHIServiSignAdapter是中国全景公司的一个用于全景监控设备的安控元件。 NHIServiSignAdapter 存在安全漏洞,该漏洞源于未能验证数字证书文件路径的长度,这将导致堆溢出漏洞。远程攻击者可利用该漏洞可以使用泄漏在没有特权的情况下执行代码。
CVSS Information
N/A
Vulnerability Type
N/A