Ledger多款产品 安全漏洞

The Ledger Nano X, among others, are products of the French company Ledger. The Ledger Nano X is a hardware wallet for cryptocurrency assets. The Ledger Flex is a touch-screen hardware wallet for cryptocurrency assets. The Ledger Stax is a curved electronic ink-screen hardware wallet for...

CVE-2019-14354

On Ledger Nano S and Nano X devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might ...

Code injection

On Ledger Nano S and Nano X devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might ...

CVE-2019-14354

Ledger Nano S/Nano X suffer a side‑channel risk from the row‑based OLED display: power consumption per display cycle correlates with illuminated pixels, enabling partial recovery of display contents (e.g., PIN or BIP39 mnemonic) if an attacker can monitor USB power while secret data is shown. Thi...

Ledger SAS Nano S and Nano X Information Disclosure Vulnerability

The Ledger SAS Nano S and Nano X are both an e-wallet device for storing cryptocurrencies from French company Ledger SAS. An information disclosure vulnerability exists in the Ledger SAS Nano S and Nano X, which can be exploited by an unauthorized attacker to obtain sensitive information about...