mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
819 B
819 B
CVE-2024-40720
Description
The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not properly validate server-side input. When a user visits a spoofed website, unauthenticated remote attackers can modify the HKEY_CURRENT_USER registry to execute arbitrary commands.
POC
Reference
No PoCs from references.