2 matches found
Default credentials
Specific F5 BIG-IP platforms with Cavium Nitrox FIPS HSM cards generate a deterministic password for the Crypto User account. The predictable nature of the password allows an authenticated user with TMSH access to the BIG-IP system, or anyone with physical access to the FIPS HSM, the information...
OpenSC Double Release Vulnerability
OpenSC is a set of software tools and libraries for smart cards, focusing on smart cards with cryptographic capabilities. A double-release vulnerability exists in scpkcs15emuschsminit in libopensc/pkcs15-sc-hsm.c in OpenSC prior to 0.19.0-rc1 when handling responses from HSM cards. An attacker...