CVE-2022-46304

ChangingTec ServiSign component has insufficient filtering for special characters in the connection response parameter. An unauthenticated remote attacker can host a malicious website for the component user to access, which triggers command injection and allows the attacker to execute arbitrary system command to perform arbitrary system operation or disrupt service.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.twcert.org.tw/tw/cp-132-6800-b5cf6-1.html	Third Party Advisory VDB Entry
https://www.twcert.org.tw/tw/cp-132-6800-b5cf6-1.html	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

cpe:2.3:a:changingtec:servisign:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-01-03 03:15

Updated : 2024-11-21 07:30

NVD link : CVE-2022-46304

Mitre link : CVE-2022-46304

CVE.ORG link : CVE-2022-46304

JSON object : View

Products Affected

changingtec

servisign

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

{"id": "CVE-2022-46304", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "twcert@cert.org.tw", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2023-01-03T03:15:10.473", "references": [{"url": "https://www.twcert.org.tw/tw/cp-132-6800-b5cf6-1.html", "tags": ["Third Party Advisory", "VDB Entry"], "source": "twcert@cert.org.tw"}, {"url": "https://www.twcert.org.tw/tw/cp-132-6800-b5cf6-1.html", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "twcert@cert.org.tw", "description": [{"lang": "en", "value": "CWE-78"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "ChangingTec ServiSign component has insufficient filtering for special characters in the connection response parameter. An unauthenticated remote attacker can host a malicious website for the component user to access, which triggers command injection and allows the attacker to execute arbitrary system command to perform arbitrary system operation or disrupt service."}, {"lang": "es", "value": "El componente ChangingTec ServiSign tiene un filtrado insuficiente para caracteres especiales en el par\u00e1metro de respuesta de conexi\u00f3n. Un atacante remoto no autenticado puede alojar un sitio web malicioso al que puede acceder el usuario del componente, lo que desencadena la inyecci\u00f3n de comandos y permite al atacante ejecutar comandos arbitrarios del sistema para realizar operaciones arbitrarias del sistema o interrumpir el servicio."}], "lastModified": "2024-11-21T07:30:20.833", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:changingtec:servisign:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB1F1012-3AFF-4D76-AEB6-BDEADFE1423F"}], "operator": "OR"}]}], "sourceIdentifier": "twcert@cert.org.tw"}