PT-2025-48696 · Entrust · Nshield Connect Xc+2
Published
2025-12-02
·
Updated
2025-12-02
·
CVE-2025-59705
CVSS v3.1
6.8
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Entrust nShield Connect XC versions through 13.6.11
Entrust nShield 5c versions through 13.6.11
Entrust nShield HSMi versions through 13.6.11
Entrust nShield Connect XC version 13.7
Entrust nShield 5c version 13.7
Entrust nShield HSMi version 13.7
Description
A physically proximate attacker can escalate privileges by enabling the USB interface through chassis probe insertion during system boot. This is also known as "Unauthorized Reactivation of the USB interface" or F01.
Recommendations
Entrust nShield Connect XC versions through 13.6.11: Ensure the USB interface is disabled during system boot.
Entrust nShield 5c versions through 13.6.11: Ensure the USB interface is disabled during system boot.
Entrust nShield HSMi versions through 13.6.11: Ensure the USB interface is disabled during system boot.
Entrust nShield Connect XC version 13.7: Ensure the USB interface is disabled during system boot.
Entrust nShield 5c version 13.7: Ensure the USB interface is disabled during system boot.
Entrust nShield HSMi version 13.7: Ensure the USB interface is disabled during system boot.
Exploit
Fix
LPE
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nshield 5C
Nshield Connect Xc
Nshield Hsmi