Name of the Vulnerable Software and Affected Versions:

Diebold Nixdorf Vynamic Security Suite versions through 4.3.0 SR01

Description:

Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR01 does not validate file attributes or the contents of the `/root` directory during integrity validation. This allows for code execution, recovery of TPM Disk Encryption keys, decryption of the Windows system partition, and full control of the Windows OS, potentially through modifications to the `~/.profile` file.

Recommendations:

Update Diebold Nixdorf Vynamic Security Suite to a version later than 4.3.0 SR01.