10 matches found
CVE-2023-24063
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR10 fails to validate /etc/mtab during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk...
CVE-2023-33206
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR16, 4.0.0 SR06, 4.1.0 SR04, 4.2.0 SR03, and 4.3.0 SR01 fails to validate symlinks during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk...
CVE-2023-24063
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR10 fails to validate /etc/mtab during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk...
CVE-2023-28865
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR15, 4.0.0 SR05, 4.1.0 SR03, and 4.2.0 SR02 fails to validate the directory contents of certain directories e.g., ensuring the expected hash sum during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who...
CVE-2023-24064
Diebold Nixdorf Vynamic Security Suite (VSS) is affected up to version 3.3.0 SR4. The vulnerability arises because /etc/initab is not validated during Pre-Boot Authorization, enabling a physical attacker with access to the disk to manipulate contents. Remediation is to upgrade to version 3.3.0 SR...
CVE-2023-24062
Diebold Nixdorf Vynamic Security Suite (VSS) is affected by CVE-2023-24062. The vulnerability arises from a failure to validate the directory structure of the root filesystem during Pre-Boot Authorization (PBA). Affected versions are VSS before 3.3.0 SR12, 4.0.0 SR04, 4.1.0 SR02, and 4.2.0 SR01. ...
CVE-2023-40261
Diebold Nixdorf Vynamic Security Suite (VSS) is affected by CVE-2023-40261 due to failure to validate file attributes during Pre-Boot Authorization (PBA). Affected versions are VSS before 3.3.0 SR17, 4.0.0 SR07, 4.1.0 SR04, 4.2.0 SR04, and 4.3.0 SR02. The underlying issue is improper validation o...
CVE-2023-24064
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR4 fails to validate /etc/initab during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk...
CVE-2023-33206
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR16, 4.0.0 SR06, 4.1.0 SR04, 4.2.0 SR03, and 4.3.0 SR01 fails to validate symlinks during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk...
CVE-2023-24062
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR12, 4.0.0 SR04, 4.1.0 SR02, and 4.2.0 SR01 fails to validate the directory structure of the root file system during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents...