Vulnerabilities > CVE-2006-2707 - Remote Security vulnerability in Secure Elements Class 5 Enterprise vulnerability Management 2.8.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 does not validate the peer certificate when obtaining an update, which could allow remote attackers to distribute malicious updates to clients. The vulnerabilities and security issues have been fixed in C5 EVM version 2.8.1.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |