Code injection

2018-06-1716:29:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.7%

JSON

Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.

CPENameOperatorVersion
secure_boot_stick_firmwareeq5.6.5

CPE	Name	Operator	Version
	secure_boot_stick_firmware	eq	5.6.5

References

telematik.prakinf.tu-ilmenau.de/ecos-sbs/advisory.html