| |
Vulnerability CVE-2022-46304
Published: 2023-01-03
| Description: |
ChangingTec ServiSign component has insufficient filtering for special characters in the connection response parameter. An unauthenticated remote attacker can host a malicious website for the component user to access, which triggers command injection and allows the attacker to execute arbitrary system command to perform arbitrary system operation or disrupt service. |
References: |
https://www.twcert.org.tw/tw/cp-132-6800-b5cf6-1.html
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
