Vulnerabilities > CVE-2018-12332 - Incomplete Cleanup vulnerability in Ecos Secure Boot Stick Firmware 5.6.5

047910
CVSS 4.2 - MEDIUM
Attack vector
PHYSICAL
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
high complexity
ecos
CWE-459

Summary

Incomplete Cleanup vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via a compromised host PC after a reset.

Vulnerable Configurations

Part Description Count
OS
Ecos
1
Hardware
Ecos
1

Common Weakness Enumeration (CWE)