Lucene search

[email protected]CVE-2012-5860

HistoryNov 14, 2012 - 12:30 p.m.

CVE-2012-5860

2012-11-1412:30:59

[email protected]

web.nvd.nist.gov

oberthur

id-one

cosmo

smart cards

vulnerability

cryptographic protection

non-compliant public keys

nvd

4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:C/A:N

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.5%

JSON

Unspecified vulnerability on Oberthur ID-One COSMO 5.2, 5.2a, and 64 smart cards makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging the generation of non-compliant public keys.

Affected configurations

NVD

Node

oberthurid-one_cosmoMatch5.2

oberthurid-one_cosmoMatch5.2a

oberthurid-one_cosmoMatch64

CPENameOperatorVersion
oberthur:id-one_cosmooberthur id-one cosmoeq5.2
oberthur:id-one_cosmooberthur id-one cosmoeq64

CPE	Name	Operator	Version
oberthur:id-one_cosmo	oberthur id-one cosmo	eq	5.2
oberthur:id-one_cosmo	oberthur id-one cosmo	eq	64

References

www.kb.cert.org/vuls/id/659615

exchange.xforce.ibmcloud.com/vulnerabilities/80039

4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:L/AC:H/Au:N/C:N/I:C/A:N

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for CVE-2012-5860

nvd1 cvelist1 prion1