Описание
Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.
Ссылки
- MitigationThird Party Advisory
- MitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:ecos:secure_boot_stick_firmware:5.6.5:*:*:*:*:*:*:*
cpe:2.3:h:ecos:secure_boot_stick:-:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00137
Низкий
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-345
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.
EPSS
Процентиль: 34%
0.00137
Низкий
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-345