Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Changingtec Subscribe
Filtered by product Megaservisignadapter
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-39059 1 Changingtec 1 Megaservisignadapter 2023-02-07 N/A 7.5 HIGH
ChangingTech MegaServiSignAdapter component has a path traversal vulnerability within its file reading function. An unauthenticated remote attacker can exploit this vulnerability to access arbitrary system files.
CVE-2022-39060 1 Changingtec 1 Megaservisignadapter 2023-02-07 N/A 9.8 CRITICAL
ChangingTech MegaServiSignAdapter component has a vulnerability of improper input validation. An unauthenticated remote attacker can exploit this vulnerability to access and modify HKEY_CURRENT_USER subkey (ex: AutoRUN) in Registry where malicious scripts can be executed to take control of the system or to terminate the service.
CVE-2022-39061 1 Changingtec 1 Megaservisignadapter 2023-02-07 N/A 6.5 MEDIUM
ChangingTech MegaServiSignAdapter component has a vulnerability of Out-of-bounds Read due to insufficient validation for parameter length. An unauthenticated remote attacker can exploit this vulnerability to access partial sensitive content in memory and disrupts partial services.