GCVE - cpe:2.3:a:changing:servisign_windows

Approved changes feed: RSS · Atom

cpe:2.3:a:changing:servisign_windows_versions:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Changing (`28c7953a-d2e6-5f3d-ab21-ba497dfbd3f3`)
Product	Servisign Windows Versions (`1a075e75-866a-5cb3-9e54-2e8a6977840a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-3927`	vulnerable	2026-06-08 05:25:57.905960	ServiSign Windows Versions- Arbitrary File Deletion HIGH (8.3) An arbitrary-file-access vulnerability exists in ServiSign security plugin, as long as the attackers learn the specific API function, they may access arbitrary files on target system via crafted API parameter. Published: 2020-02-03T11:00:31.635Z Updated: 2024-09-16T22:55:21.477Z Open on db.gcve.eu Reference links https://tvn.twcert.org.tw/taiwanvn/TVN-201910007 https://www.chtsecurity.com/news/1179d48b-7609-4f67-9d7e-3bac2979c6ce	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-3926`	vulnerable	2026-06-08 05:25:57.905559	ServiSign Windows Versions- Arbitrary File Access MEDIUM (6.1) An arbitrary-file-access vulnerability exists in ServiSign security plugin, as long as the attackers learn the specific API function, they may access arbitrary files on target system via crafted API parameter. Published: 2020-02-03T11:00:31.233Z Updated: 2024-09-16T17:14:45.590Z Open on db.gcve.eu Reference links https://tvn.twcert.org.tw/taiwanvn/TVN-201910006 https://www.chtsecurity.com/news/1179d48b-7609-4f67-9d7e-3bac2979c6ce	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-3925`	vulnerable	2026-06-08 05:25:57.904546	ServiSign Windows Versions- Remote Code Execution via LoadLibrary HIGH (8.3) A Remote Code Execution(RCE) vulnerability exists in some designated applications in ServiSign security plugin, as long as the interface is captured, attackers are able to launch RCE and executes arbitrary command on target system via malicious crafted scripts. Published: 2020-02-03T11:00:30.831Z Updated: 2024-09-17T03:22:58.327Z Open on db.gcve.eu Reference links https://tvn.twcert.org.tw/taiwanvn/TVN-201910005 https://www.chtsecurity.com/news/1179d48b-7609-4f67-9d7e-3bac2979c6ce	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Servisign Windows Versions

PURL mappings

Vulnerability references

Contribute