Описание
Format String vulnerability in KeepKey version 4.0.0 allows attackers to trigger information display (of information that should not be accessible), related to text containing characters that the device's font lacks.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:shapeshift:keepkey_firmware:4.0.0:*:*:*:*:*:*:*
cpe:2.3:h:keepkey:keepkey:-:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00306
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-134
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Format String vulnerability in KeepKey version 4.0.0 allows attackers to trigger information display (of information that should not be accessible), related to text containing characters that the device's font lacks.
EPSS
Процентиль: 53%
0.00306
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-134