Name of the Vulnerable Software and Affected Versions:

Diebold Nixdorf Vynamic Security Suite versions through 4.3.0 SR06

Description:

The software contains functionality that allows the removal of critical system files before the filesystem is properly mounted, such as using a delete call in `/etc/rc.d/init.d/mountfs` to remove the `/etc/fstab` file. This can lead to code execution and, in some versions, enable recovery of TPM Disk Encryption keys and decryption of the Windows system partition.

Recommendations:

Update to a version later than 4.3.0 SR06.