Vulnerabilities > Changingtec > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-02 | CVE-2024-40722 | Out-of-bounds Write vulnerability in Changingtec TCB Servisign The specific API in TCBServiSign Windows Version from CHANGING Information Technology does does not properly validate the length of server-side input. | 4.3 |
| 2024-08-02 | CVE-2024-40723 | Out-of-bounds Write vulnerability in Changingtec Hwatai Servisign The specific API in HWATAIServiSign Windows Version from CHANGING Information Technology does not properly validate the length of server-side inputs. | 4.3 |
| 2024-08-02 | CVE-2024-40719 | Inadequate Encryption Strength vulnerability in Changingtec TCB Servisign The encryption strength of the authorization keys in CHANGING Information Technology TCBServiSign Windows Version is insufficient. | 6.5 |
| 2023-04-27 | CVE-2023-22901 | Path Traversal vulnerability in Changingtec Mobile ONE Time Password ChangingTec MOTP system has a path traversal vulnerability. | 4.9 |
| 2023-01-31 | CVE-2022-39061 | Out-of-bounds Read vulnerability in Changingtec Megaservisignadapter ChangingTech MegaServiSignAdapter component has a vulnerability of Out-of-bounds Read due to insufficient validation for parameter length. | 6.5 |
| 2023-01-03 | CVE-2022-46305 | Path Traversal vulnerability in Changingtec Servisign ChangingTec ServiSign component has a path traversal vulnerability. | 6.5 |
| 2022-10-18 | CVE-2022-39055 | Server-Side Request Forgery (SSRF) vulnerability in Changingtec Rava Certificate Validation System 3 RAVA certificate validation system has inadequate filtering for URL parameter. | 5.3 |
| 2021-12-29 | CVE-2021-44161 | SQL Injection vulnerability in Changingtec Motp Changing MOTP (Mobile One Time Password) system’s specific function parameter has insufficient validation for user input. | 5.8 |