Panorama Project: Security Vulnerabilities
Multiple functions of NHIServiSignAdapter failed to verify the users’ file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential.
CVSS Score
7.5
EPSS Score
0.003
Published
2020-12-31
The digest generation function of NHIServiSignAdapter has not been verified for source file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential.
CVSS Score
7.5
EPSS Score
0.003
Published
2020-12-31