CVE-2022-39060

ChangingTech MegaServiSignAdapter component has a vulnerability of improper input validation. An unauthenticated remote attacker can exploit this vulnerability to access and modify HKEY_CURRENT_USER subkey (ex: AutoRUN) in Registry where malicious scripts can be executed to take control of the system or to terminate the service.
References
Link Resource
https://www.twcert.org.tw/tw/cp-132-6887-6ed4f-1.html Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:changingtec:megaservisignadapter:*:*:*:*:*:windows:*:*

Information

Published : 2023-01-31 08:15

Updated : 2023-02-07 05:42


NVD link : CVE-2022-39060

Mitre link : CVE-2022-39060

Products Affected
No products.
CWE