漏洞标题
N/A
漏洞描述信息
Enova X-Wall ASIC使用Microwire从串行EEPROM获得密钥,该EEPROM存储密钥以明文形式,这允许具有物理访问权限的本地用户通过读取和复制位于硬件令牌上的EEPROM或捕获Microwire总线来获取密钥。
CVSS信息
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
The Enova X-Wall ASIC encrypts with a key obtained via Microwire from a serial EEPROM that stores the key in cleartext, which allows local users with physical access to obtain the key by reading and duplicating an EEPROM that is located on a hardware token, or by sniffing the Microwire bus.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Enova X-Wall ASIC加密cleartext中EEPROM信息泄露漏洞
漏洞描述信息
Enova X-Wall ASIC加密是用一条通过Microwire从一列在cleartext中存有密钥的EEPROM中取得一条密钥,本地用户可通过读取和复制位于一个硬件标识上的EEPROM,或通过嗅探Microwire总线,以物理访问方式获取密钥。
CVSS信息
N/A
漏洞类别
授权问题