Lucene search
MitreCVE-2006-2711HistoryMay 31, 2006 - 10:02 p.m.
CVE-2006-2711
2006-05-3122:02:00
mitre
web.nvd.nist.gov
26
cve-2006-2711
secure elements class 5 avr
c5 evm
initialization vector
key reuse
message session vulnerability
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.025
Percentile
90.3%
Secure Elements Class 5 AVR (aka C5 EVM) 2.8.1 and earlier, and possibly later 2.8.x releases, uses the same initialization vector and key for each message session, which allows remote attackers to obtain potentially sensitive information about messages.
Affected configurations
Node
secure_elementsclass_5_enterprise_vulnerability_managementMatch2.8.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| secure_elements | class_5_enterprise_vulnerability_management | 2.8.0 | cpe:2.3:a:secure_elements:class_5_enterprise_vulnerability_management:2.8.0:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2006-05-31 22:02:00
nvd
nvd
CVE-2006-2711
2006-05-31 22:02:00
cvelist
cvelist
CVE-2006-2711
2006-05-31 22:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.025
Percentile
90.3%
Related for CVE-2006-2711