HiCOS’ client-side citizen certificate component has a double free vulnerability. An unauthenticated physical attacker can exploit this vulnerability to corrupt memory and execute arbitrary code, manipulate system data or terminate service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hinet hicos natural person credential component client 3.1.0.00002 |
||
hinet hicos natural person credential component client 3.0.3.30306 |
||
hinet hicos natural person credential component client 3.0.3.30404 |