CVE-2022-35219

Description

The NHI card’s web service component has a stack-based buffer overflow vulnerability due to insufficient validation for network packet key parameter. A LAN attacker with general user privilege can exploit this vulnerability to disrupt service.

Related CPE's

anhihealth_insurance_web_service_component-*******

omicrosoftwindows-*******

References

https://www.twcert.org.tw/tw/cp-132-6355-3bdab-1.html

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io