Vynamic Security Suite Security Vulnerabilities and Issues — Vynamic Security Suite CVE List

Lucene search

DieboldnixdorfVynamic Security Suite

8 matches found

CVE•added 2024/08/08 6:15 p.m.•55 views

CVE-2023-24063

Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR10 fails to validate /etc/mtab during the Pre-Boot Authorization (PBA) process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk.

6.8CVSS6.5AI score0.00035EPSS

CVE•added 2024/08/08 6:15 p.m.•51 views

CVE-2023-24064

Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR4 fails to validate /etc/initab during the Pre-Boot Authorization (PBA) process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard disk.

6.8CVSS6.5AI score0.00109EPSS

CVE•added 2024/08/08 6:15 p.m.•47 views

CVE-2023-24062

Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR12, 4.0.0 SR04, 4.1.0 SR02, and 4.2.0 SR01 fails to validate the directory structure of the root file system during the Pre-Boot Authorization (PBA) process. This can be exploited by a physical attacker who is able to manipulate the conten...

6.8CVSS6.6AI score0.00109EPSS

CVE•added 2024/08/08 6:15 p.m.•42 views

CVE-2023-40261

Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR17, 4.0.0 SR07, 4.1.0 SR04, 4.2.0 SR04, and 4.3.0 SR02 fails to validate file attributes during the Pre-Boot Authorization (PBA) process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's h...

6.8CVSS4.5AI score0.00079EPSS

CVE•added 2024/08/08 6:15 p.m.•40 views

CVE-2023-33206

Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR16, 4.0.0 SR06, 4.1.0 SR04, 4.2.0 SR03, and 4.3.0 SR01 fails to validate symlinks during the Pre-Boot Authorization (PBA) process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's hard dis...

7.5CVSS6.6AI score0.00218EPSS

CVE•added 2024/08/08 6:15 p.m.•36 views

CVE-2023-28865

Diebold Nixdorf Vynamic Security Suite (VSS) before 3.3.0 SR15, 4.0.0 SR05, 4.1.0 SR03, and 4.2.0 SR02 fails to validate the directory contents of certain directories (e.g., ensuring the expected hash sum) during the Pre-Boot Authorization (PBA) process. This can be exploited by a physical attacker...

6.6CVSS6.6AI score0.00036EPSS

CVE•added 2025/08/29 4:15 p.m.•6 views

CVE-2024-46917

Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR01 does not validate file attributes or the contents of /root during integrity validation. This allows code execution, recovery of TPM Disk Encryption keys, decryption of the Windows system partition, and full control of the Windows OS, e.g., t...

8.1CVSS6.7AI score0.00046EPSS

CVE•added 2025/08/29 4:15 p.m.•4 views

CVE-2024-46916

Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR06 contains functionality that allows the removal of critical system files before the filesystem is properly mounted (e.g., leveraging a delete call in /etc/rc.d/init.d/mountfs to remove the /etc/fstab file). This can allow code execution and, ...

8.1CVSS7.1AI score0.00046EPSS