CVE-2019-18671

Sažetak

Insufficient checks in the USB packet handling of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow out-of-bounds writes in the .bss segment via crafted messages. The vulnerability could allow code execution or other forms of impact. It can be triggered by unauthenticated attackers and the interface is reachable via WebUSB.

Reference

https://blog.inhq.net/posts/keepkey-CVE-2019-18671/
https://github.com/keepkey/keepkey-firmware/commit/b222c66cdd7c3203d917c80ba615082d309d80c3
https://medium.com/shapeshift-stories/keepkey-release-notes-v-6f7d2ec78065
https://medium.com/shapeshift-stories/shapeshift-security-update-8ec89bb1b4e3

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

12-02-2020 - 03:15

Objavljeno

06-12-2019 - 18:15