PT-2025-35242 · Diebold Nixdorf+1 · Vynamic Security Suite+1

Published

2025-08-29

Updated

2025-09-09

CVE-2024-46916

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Diebold Nixdorf Vynamic Security Suite versions through 4.3.0 SR06

Description The software contains functionality that allows the removal of critical system files before the filesystem is properly mounted, such as using a delete call in /etc/rc.d/init.d/mountfs to remove the /etc/fstab file. This can lead to code execution and, in some versions, enable recovery of TPM Disk Encryption keys and decryption of the Windows system partition.

Recommendations Update to a version later than 4.3.0 SR06.

Exploit

Fix

Improper Access Control

Incorrect Default Permissions

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-276CWE-269

Related Identifiers

CVE-2024-46916

Affected Products

Vynamic Security Suite

Windows

PT-2025-35242 · Diebold Nixdorf+1 · Vynamic Security Suite+1

CVE-2024-46916

Weakness Enumeration

Related Identifiers

Affected Products

References · 8