CVE-2022-39060

Name of the Vulnerable Software and Affected Versions ChangingTech MegaServiSignAdapter (affected versions not specified)

Description The issue is related to improper input validation in the ChangingTech MegaServiSignAdapter component. An unauthenticated remote attacker can exploit this to access and modify the HKEY CURRENT USER subkey, such as AutoRUN, in the Registry. This allows malicious scripts to be executed, potentially leading to system control or service termination.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.