5
CVE-2006-2707
- EPSS 1.12%
- Veröffentlicht 31.05.2006 22:02:00
- Zuletzt bearbeitet 16.06.2026 22:25:35
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSecure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 does not validate the peer certificate when obtaining an update, which could allow remote attackers to distribute malicious updates to clients.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Secure Elements ≫ Class 5 Enterprise Vulnerability Management Version2.8.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.12% | 0.619 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/20378
http://securitytracker.com/id?1016184
http://www.vupen.com/english/advisories/2006/2069
http://www.kb.cert.org/vuls/id/207337
http://www.kb.cert.org/vuls/id/WDON-6QAPAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/26758