CVE-2025-59696

CVSS 3.2 LOWEPSS 0.2%CWE-1263

In short

A person with physical access to certain Entrust security devices can alter or delete records of tampering attempts. This matters because these records are critical for detecting unauthorized access to the device.

Technical detail

CWE-1263 involves improper restriction of rendered UI layers or frames. An attacker with physical proximity can exploit insufficient access controls on the Chassis management board to modify or erase tamper event logs in nShield Connect XC, nShield 5c, and nShield HSMi (versions ≤13.6.11 or 13.7), undermining forensic capabilities and detection mechanisms.

Summary generated and translated by AI from the official description.

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker to modify or erase tamper events via the Chassis management board.

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/google/security-research/security/advisories/GHSA-6q4x-m86j-gfwj https://www.entrust.com/use-case/why-use-an-hsm