CVE-2025-59697

Name of the Vulnerable Software and Affected Versions Entrust nShield Connect XC versions through 13.6.11 Entrust nShield 5c versions through 13.6.11 Entrust nShield HSMi versions through 13.6.11 Entrust nShield Connect XC version 13.7 Entrust nShield 5c version 13.7 Entrust nShield HSMi version 13.7

Description A physically proximate attacker can escalate privileges by modifying the Legacy GRUB bootloader configuration. This modification allows the attacker to initiate a root shell upon booting the host operating system. This issue is identified as F06.

Recommendations Entrust nShield Connect XC versions through 13.6.11: Secure the Legacy GRUB bootloader configuration to prevent unauthorized modifications. Entrust nShield 5c versions through 13.6.11: Secure the Legacy GRUB bootloader configuration to prevent unauthorized modifications. Entrust nShield HSMi versions through 13.6.11: Secure the Legacy GRUB bootloader configuration to prevent unauthorized modifications. Entrust nShield Connect XC version 13.7: Secure the Legacy GRUB bootloader configuration to prevent unauthorized modifications. Entrust nShield 5c version 13.7: Secure the Legacy GRUB bootloader configuration to prevent unauthorized modifications. Entrust nShield HSMi version 13.7: Secure the Legacy GRUB bootloader configuration to prevent unauthorized modifications.