TVN ID | TVN-202207001 |
---|---|
CVE ID | CVE-2022-35217 |
CVSS | 7.8 (High) CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Affected Products | Windows: Setup.zip MD5:dae0509e5aabde2f110ce8418af67cf7 |
Description | The NHI card’s web service component has a stack-based buffer overflow vulnerability due to insufficient validation for network packet header length. A local area network attacker with general user privilege can exploit this vulnerability to execute arbitrary code, manipulate system command or disrupt service. |
Solution | Download the latest version |
Credit | how2hack (CCoE) |
Public Date | 2022-07-29 |