Unknown · Nhi'S Health Insurance Web Service · CVE-2021-45918
**Name of the Vulnerable Software and Affected Versions**
NHI's health insurance web service component (affected versions not specified)
**Description**
The issue is related to insufficient validation for input string length in the health insurance web service component, which can lead to a heap-based buffer overflow attack. A remote attacker can exploit this to flood the memory space reserved for the program, terminating the service without authentication. This requires a system restart to recover the service.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.