CVE-2025-59697

High CVSS: 7.2

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker to escalate privileges by editing the Legacy GRUB bootloader configuration to start a root shell upon boot of the host OS. This is called F06.

Vendor

Entrust

Product

Nshield 5c Firmware

CWE

CWE-269

Yayın Tarihi

2025-12-02 15:15:55

Güncelleme

2025-12-08 19:31:35

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-269 Nshield 5c Firmware HIGH Entrust 2025

Referanslar

https://github.com/google/security-research/security/advisories/GHSA-6q4x-m86j-gfwj https://www.entrust.com/use-case/why-use-an-hsm https://github.com/google/security-research/security/advisories/GHSA-6q4x-m86j-gfwj

Benzer Kayıtlar

Critical

CVE-2025-59703

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker…

Medium

CVE-2025-59704

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow an attacker to gain access the…

Medium

CVE-2025-59705

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker…

Critical

CVE-2025-59695

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a user with OS root access to a…

Low

CVE-2025-59696

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker…

Medium

CVE-2025-59698

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, might allow a physically proximate at…