The NHI card’s web service component has a heap-based buffer overflow vulnerability due to insufficient validation for packet origin parameter length. A LAN attacker with general user privilege can exploit this vulnerability to disrupt service.Referenceshttps://www.twcert.org.tw/tw/cp-132-6354-1cf61-1.html
