Skip to main content

Hicos Natural Person Credential Component Client

5 CVEs product

Monthly

CVE-2022-35222 MEDIUM This Month

HiCOS Citizen verification component has a stack-based buffer overflow vulnerability due to insufficient parameter length validation. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow Hicos Natural Person Credential Component Client
NVD
CVSS 3.1
6.8
EPSS
0.4%
CVE-2022-32962 MEDIUM This Month

HiCOS’ client-side citizen certificate component has a double free vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Hicos Natural Person Credential Component Client
NVD
CVSS 3.1
6.8
EPSS
0.2%
CVE-2022-32961 MEDIUM This Month

HICOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for token information. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow Hicos Natural Person Credential Component Client
NVD
CVSS 3.1
6.8
EPSS
0.2%
CVE-2022-32960 MEDIUM This Month

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for card number. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow Hicos Natural Person Credential Component Client
NVD
CVSS 3.1
6.8
EPSS
0.2%
CVE-2022-32959 MEDIUM This Month

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for OS information. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow Hicos Natural Person Credential Component Client
NVD
CVSS 3.1
6.8
EPSS
0.2%
EPSS 0% CVSS 6.8
MEDIUM This Month

HiCOS Citizen verification component has a stack-based buffer overflow vulnerability due to insufficient parameter length validation. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow +1
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

HiCOS’ client-side citizen certificate component has a double free vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Hicos Natural Person Credential Component Client
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

HICOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for token information. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow +1
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for card number. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow +1
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for OS information. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy