MEDIUM🇵🇱 Wersja polska

CVE-2025-59694

CVSS 6.8v3.1pub. 2025-12-02upd. 2025-12-15

The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to persistently modify firmware and influence the (insecurely configured) appliance boot process. To exploit this, the attacker must modify the firmware via JTAG or perform an upgrade to the chassis management board firmware. This is called F03.

CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Entrust Nshield 5c

    HW
    Entrust
    wszystkie wersje
  • Entrust Nshield 5c Firmware

    OS
    Entrust
    < 13.6.1213.7.3 – 13.9.0 (bez)
  • Entrust Nshield Connect Xc Base

    HW
    Entrust
    wszystkie wersje
  • Entrust Nshield Connect Xc Base Firmware

    OS
    Entrust
    13.7.3 – 13.9.0 (bez)< 13.6.12
  • Entrust Nshield Connect Xc High

    HW
    Entrust
    wszystkie wersje
  • Entrust Nshield Connect Xc High Firmware

    OS
    Entrust
    < 13.6.1213.7.3 – 13.9.0 (bez)
  • Entrust Nshield Connect Xc Mid

    HW
    Entrust
    wszystkie wersje
  • Entrust Nshield Connect Xc Mid Firmware

    OS
    Entrust
    13.7.3 – 13.9.0 (bez)< 13.6.12
  • Entrust Nshield Hsmi

    HW
    Entrust
    wszystkie wersje
  • Entrust Nshield Hsmi Firmware

    OS
    Entrust
    < 13.6.1213.7.3 – 13.9.0 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-59703CRITICAL9.1PL ✓ten sam produkt

Entrust nShield HSM: fizyczny dostęp do wnętrza urządzenia bez śladów ingerencji

CVE-2025-59693CRITICAL9.8PL ✓ten sam produkt

Entrust nShield HSM — privilege escalation przez fizyczny dostęp JTAG

CVE-2025-59695CRITICAL9.8PL ✓ten sam produkt

Entrust nShield: modyfikacja firmware CMB bez uwierzytelnienia

CVE-2025-59697HIGH7.2ten sam produkt

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximat...

CVE-2025-59702HIGH7.2ten sam produkt

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximat...