CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-32962

HiCOS’ client-side citizen certificate component has a double free vulnerability. An unauthenticated physical attacker can exploit this vulnerability to corrupt memory and execute arbitrary code, manipulate system data or terminate service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 11.7%

CVSS Severity

CVSS v3 Score 6.8

References

https://www.twcert.org.tw/tw/cp-132-6293-86576-1.html
https://www.twcert.org.tw/tw/cp-132-6293-86576-1.html

Products affected by CVE-2022-32962

Hinet » Hicos Natural Person Credential Component Client » Version: 3.0.3.30306

cpe:2.3:a:hinet:hicos_natural_person_credential_component_client:3.0.3.30306
Hinet » Hicos Natural Person Credential Component Client » Version: 3.0.3.30404

cpe:2.3:a:hinet:hicos_natural_person_credential_component_client:3.0.3.30404
Hinet » Hicos Natural Person Credential Component Client » Version: 3.1.0.00002

cpe:2.3:a:hinet:hicos_natural_person_credential_component_client:3.1.0.00002

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-32962

Products

Pricing

Contact Us