CVE-2006-2710

Опубликовано: 31 мая 2006

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 uses the same invariant RSA key for all installations, which allows remote attackers with the key to decrypt communications.

Ссылки

http://secunia.com/advisories/20378
Vendor Advisory
http://securitytracker.com/id?1016184
http://www.kb.cert.org/vuls/id/566553
US Government Resource
http://www.kb.cert.org/vuls/id/WDON-6QAQK9
http://www.vupen.com/english/advisories/2006/2069
https://exchange.xforce.ibmcloud.com/vulnerabilities/26753
http://secunia.com/advisories/20378
Vendor Advisory
http://securitytracker.com/id?1016184
http://www.kb.cert.org/vuls/id/566553
US Government Resource
http://www.kb.cert.org/vuls/id/WDON-6QAQK9
http://www.vupen.com/english/advisories/2006/2069
https://exchange.xforce.ibmcloud.com/vulnerabilities/26753

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:secure_elements:class_5_enterprise_vulnerability_management:2.8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00831

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-v4m5-x9xp-5653

github

почти 4 года назад