CVE-2023-33217
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
By abusing a design flaw in the firmware upgrade mechanism of the impacted terminal it's possible to cause a permanent denial of service for the terminal. the only way to recover the terminal is by sending back the terminal to the manufacturer
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IDEMIA | SIGMA Lite & Lite + | 0 < 4.15.5 | affected |
| IDEMIA | SIGMA Wide | 0 < 4.15.5 | affected |
| IDEMIA | SIGMA Extreme | 0 < 4.15.5 | affected |
| IDEMIA | MorphoWave Compact/XP | 0 < 2.12.2 | affected |
| IDEMIA | VisionPass | 0 < 2.12.2 | affected |
| IDEMIA | MorphoWave SP | 0 < 1.2.7 | affected |
Weaknesses
- CWE-20: CWE-20 Improper Input Validation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.