Описание
In the KeepKey firmware before 7.3.2,Flaws in the supervisor interface can be exploited to bypass important security restrictions on firmware operations. Using these flaws, malicious firmware code can elevate privileges, permanently make the device inoperable or overwrite the trusted bootloader code to compromise the hardware wallet across reboots or storage wipes.
Ссылки
- ExploitPatchThird Party Advisory
- PatchThird Party Advisory
- Release NotesThird Party Advisory
- ExploitPatchThird Party Advisory
- PatchThird Party Advisory
- Release NotesThird Party Advisory
Уязвимые конфигурации
Одновременно
EPSS
6.6 Medium
CVSS3
6.9 Medium
CVSS2
Дефекты
Связанные уязвимости
In the KeepKey firmware before 7.3.2, the bootloader can be exploited in unusual situations in which the attacker has physical access, convinces the victim to install malicious firmware, or knows the victim's seed phrase. lib/board/supervise.c mishandles svhandler_flash_* address range checks. If exploited, any installed malware could persist even after wiping the device and resetting the firmware.
EPSS
6.6 Medium
CVSS3
6.9 Medium
CVSS2