High severity8.1NVD Advisory· Published Dec 31, 2020· Updated Jun 17, 2026
CVE-2020-25843
CVE-2020-25843
Description
NHIServiSignAdapter fails to verify the length of digital credential files’ path which leads to a heap overflow loophole. Remote attackers can use the leak to execute code without privilege.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.0.20.0218
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-4271-951cd-1.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.