Описание
Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 does not validate the peer certificate when obtaining an update, which could allow remote attackers to distribute malicious updates to clients.
Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 does not validate the peer certificate when obtaining an update, which could allow remote attackers to distribute malicious updates to clients.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-2707
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26758
- http://secunia.com/advisories/20378
- http://securitytracker.com/id?1016184
- http://www.kb.cert.org/vuls/id/207337
- http://www.kb.cert.org/vuls/id/WDON-6QAPAL
- http://www.vupen.com/english/advisories/2006/2069
EPSS
Процентиль: 72%
0.00705
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 does not validate the peer certificate when obtaining an update, which could allow remote attackers to distribute malicious updates to clients.
EPSS
Процентиль: 72%
0.00705
Низкий