CVE-2020-25845
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
Multiple functions of NHIServiSignAdapter failed to verify the users’ file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| CHANGING Inc. | NHIServiSignAdapter | 1.0.20.0218 | affected |
Weaknesses
- Information Leakage
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.