CVE-2025-20886

Sažetak

Inclusion of sensitive information in test code in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to get test key.

Reference

CVSS

Base:	4.1
Impact:	3.6
Exploitability:	0.5

Pristup

Vektor	Složenost	Autentikacija
LOCAL	HIGH	HIGH

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	NONE	NONE

CVSS vektor

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

Zadnje važnije ažuriranje

25-03-2025 - 06:15

Objavljeno

04-02-2025 - 08:15