| TVN ID | TVN-202212010 |
|---|---|
| CVE ID | CVE-2022-39061 |
| CVSS | 6.5 (Medium) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L |
| Affected Products | ChangingTec MegaServiSignAdapter (Windows) v1.0.17.0823 |
| Description | ChangingTech MegaServiSignAdapter component has a vulnerability of Out-of-bounds Read due to insufficient validation for parameter length. An unauthenticated remote attacker can exploit this vulnerability to access partial sensitive content in memory and disrupts partial services. |
| Solution | Update MegaServiSignAdapter (Windows) version to 1.0.22.1004 |
| Credit | DEVCORE Research Team (DEVCORE) |
| Public Date | 2023-01-31 |
:::