13 matches found
CVE-2025-59702
Affected products: Entrust nShield Connect XC, nShield 5c, and nShield HSMi up to and including version 13.6.11, and version 13.7. The issue allows a physically proximate attacker with elevated privileges to falsify tamper events by accessing internal components. Root cause details are not provid...
CVE-2025-59695
CVE-2025-59695 affects Entrust nShield hardware security modules: Connect XC, nShield 5c, and nShield HSMi. The root cause is a vulnerability (F04) that permits a user with OS root access to modify the Chassis Management Board firmware without authentication, impacting versions up to 13.6.11 and ...
CVE-2025-59705
CVE-2025-59705 affects Entrust nShield Connect XC, nShield 5c, and nShield HSMi up to 13.6.11 or 13.7. The issue is a privilege-escalation path via enabling the USB interface by inserting a chassis probe during system boot, described as "Unauthorized Reactivation of the USB interface" (F01). The ...
CVE-2025-59697
Entrust nShield devices are affected: Connect XC, nShield 5c, and nShield HSMi up to v13.6.11 and 13.7 allow a physically proximate attacker to escalate privileges by editing the Legacy GRUB bootloader configuration to boot a root shell on host OS start (F06). The underlying issue is a boot-time ...
CVE-2025-59693
The CVE affects Entrust nShield hardware: Chassis Management Board in nShield Connect XC, nShield 5c, and nShield HSMi up to firmware versions 13.6.11 and 13.7. Root cause is physical access bypass of tamper labels to reach the JTAG connector, enabling a proximate attacker to gain debug access an...
CVE-2025-59694
The CVE affects Entrust nShield hardware (Connect XC, 5c, HSMi) up to firmware 13.6.11/13.7. A physically proximate attacker can persistently modify the Chassis Management Board firmware to influence the appliance boot process via JTAG or by upgrading the board firmware. No exploits are described...
CVE-2025-59696
CVE-2025-59696 affects Entrust nShield Connect XC, nShield 5c, and nShield HSMi up to versions 13.6.11 and 13.7. A physically proximate attacker can modify or erase tamper events through the Chassis Management Board. The shared descriptions consistently indicate tamper-event manipulation, but the...
CVE-2025-59700
The CVE affects Entrust nShield devices: Connect XC, nShield 5c, and nShield HSMi up to versions 13.6.11 and 13.7. The root cause is insufficient integrity protection on the Recovery Partition, enabling a physically proximate attacker with root access to modify it. Impact includes potential compr...
CVE-2025-59701
Summary: CVE-2025-59701 affects Entrust nShield Connect XC, nShield 5c, and nShield HSMi up to version 13.6.11 or 13.7. The vulnerability arises because the Appliance SSDs are unencrypted, allowing a physically proximate attacker with elevated privileges to read and modify SSD contents. The avail...
CVE-2025-59704
The CVE-2025-59704 entry affects Entrust nShield hardware: Connect XC, 5c, and HSMi up to specific versions (through 13.6.11 and 13.7). The issue is that the BIOS menu is unpassworded, enabling an attacker with physical access to reach BIOS controls. Sources from Red Hat and NVD corroborate the B...
CVE-2025-59698
Summary: CVE-2025-59698 affects Entrust nShield Connect XC, nShield 5c, and nShield HSMi up to versions 13.6.11 and 13.7. The vulnerability allows a physically proximate attacker to access the EOL legacy bootloader. The connected documents do not provide technical root-cause details or remediatio...
CVE-2025-59699
Entrust nShield Connect XC (up to 13.6.11), nShield 5c (up to 13.6.11), and nShield HSMi (up to 13.6.11) and nShield Connect XC/HSMi 13.7 are affected by CVE-2025-59699. A physically proximate attacker can escalate privileges by booting from a USB device containing a valid root filesystem, due to...
CVE-2025-59703
Entrust nShield Connect XC, nShield 5c, and nShield HSMi (through 13.6.11 or 13.7) are affected by CVE-2025-59703. A physically proximate attacker can access internal components of the appliance without tamper-evidence by removing the tamper label and all fixing screws—an F14 attack. The descript...