216.73.217.86

CVE-2025-59703

· Published 02/12/2025 16:15 · Modified 08/12/2025 19:39

Labels: CVE-2025-59703 2025-12-02CVE-2025-59703CWE-284[email protected]

Essential information

Published
02/12/2025 16:15
Modified
08/12/2025 19:39
Author
Creator
CVSS
9.1 CRITICAL (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS metrics

Description

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to access the internal components of the appliance, without leaving tamper evidence. To exploit this, the attacker needs to remove the tamper label and all fixing screws from the device without damaging it. This is called an F14 attack.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
entrust / nshield 5c firmware cpe:2.3:o:entrust:nshield_5c_firmware:*:*:*:*:*:*:*:*
entrust / nshield 5c firmware cpe:2.3:o:entrust:nshield_5c_firmware:*:*:*:*:*:*:*:*
entrust / nshield 5c cpe:2.3:h:entrust:nshield_5c:-:*:*:*:*:*:*:*
entrust / nshield hsmi firmware cpe:2.3:o:entrust:nshield_hsmi_firmware:*:*:*:*:*:*:*:*
entrust / nshield hsmi firmware cpe:2.3:o:entrust:nshield_hsmi_firmware:*:*:*:*:*:*:*:*
entrust / nshield hsmi cpe:2.3:h:entrust:nshield_hsmi:-:*:*:*:*:*:*:*
entrust / nshield connect xc base firmware cpe:2.3:o:entrust:nshield_connect_xc_base_firmware:*:*:*:*:*:*:*:*
entrust / nshield connect xc base firmware cpe:2.3:o:entrust:nshield_connect_xc_base_firmware:*:*:*:*:*:*:*:*
entrust / nshield connect xc base cpe:2.3:h:entrust:nshield_connect_xc_base:-:*:*:*:*:*:*:*
entrust / nshield connect xc mid firmware cpe:2.3:o:entrust:nshield_connect_xc_mid_firmware:*:*:*:*:*:*:*:*
entrust / nshield connect xc mid firmware cpe:2.3:o:entrust:nshield_connect_xc_mid_firmware:*:*:*:*:*:*:*:*
entrust / nshield connect xc mid cpe:2.3:h:entrust:nshield_connect_xc_mid:-:*:*:*:*:*:*:*
entrust / nshield connect xc high firmware cpe:2.3:o:entrust:nshield_connect_xc_high_firmware:*:*:*:*:*:*:*:*
entrust / nshield connect xc high firmware cpe:2.3:o:entrust:nshield_connect_xc_high_firmware:*:*:*:*:*:*:*:*
entrust / nshield connect xc high cpe:2.3:h:entrust:nshield_connect_xc_high:-:*:*:*:*:*:*:*

References