VYPR
High severity8.8NVD Advisory· Published Aug 2, 2024· Updated Jun 17, 2026

CVE-2024-40720

CVE-2024-40720

Description

The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not properly validate server-side input. When a user visits a spoofed website, unauthenticated remote attackers can modify the HKEY_CURRENT_USER registry to execute arbitrary commands.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.