High severity8.8NVD Advisory· Published Jan 3, 2023· Updated Jun 17, 2026
CVE-2022-46304
CVE-2022-46304
Description
ChangingTec ServiSign component has insufficient filtering for special characters in the connection response parameter. An unauthenticated remote attacker can host a malicious website for the component user to access, which triggers command injection and allows the attacker to execute arbitrary system command to perform arbitrary system operation or disrupt service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-6800-b5cf6-1.htmlnvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.