Vulnerabilities > CVE-2021-35520 - Out-of-bounds Write vulnerability in Idemia products

047910
CVSS 6.2 - MEDIUM
Attack vector
PHYSICAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
low complexity
idemia
CWE-787

Summary

A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2 allows physically proximate authenticated attackers to achieve code execution, denial of services, and information disclosure via serial ports.

Common Weakness Enumeration (CWE)