PT-2018-11129 · Ecos · Ecos Secure Boot Stick

Franz Girlich

Published

2018-06-17

Updated

2019-10-03

CVE-2018-12333

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ECOS Secure Boot Stick (aka SBS) version 5.6.5

Description The issue allows an attacker to manipulate security relevant configurations and execute malicious code due to insufficient verification of data authenticity.

Recommendations For ECOS Secure Boot Stick (aka SBS) version 5.6.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-345

Related Identifiers

CVE-2018-12333

Affected Products

Ecos Secure Boot Stick

PT-2018-11129 · Ecos · Ecos Secure Boot Stick

CVE-2018-12333

Weakness Enumeration

Related Identifiers

Affected Products

References · 3