CVE-2021-22887
N/A
N/A
Summary
A vulnerability in the BIOS of Pulse Secure (PSA-Series Hardware) models PSA5000 and PSA7000 could allow an attacker to compromise BIOS firmware. This vulnerability can be exploited only as part of an attack chain. Before an attacker can compromise the BIOS, they must exploit the device.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | PSA5000, PSA7000 | Fixed in 3.0d | affected |
Weaknesses
- CWE-506: Embedded Malicious Code (CWE-506)
ADP Enrichment
CVE Program Container
Additional References
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44712
- https://www.supermicro.com/en/support/security/Trickbot
References
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44712
- https://www.supermicro.com/en/support/security/Trickbot
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.