Security Advisory

CVE-2022-32959

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-20 02:02:25

Last updated 2024-09-17 01:31:04

Assigner twcert

State PUBLISHED

Description

HiCOS’ client-side citizen digital certificate component has a stack-based buffer overflow vulnerability when reading IC card due to insufficient parameter length validation for OS information. An unauthenticated physical attacker can exploit this vulnerability to execute arbitrary code, manipulate system data or terminate service.

← Browse all CVEs View on cve.org ↗