Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In the KeepKey firmware before 7.3.2,Flaws in the supervisor interface can be exploited to bypass important security restrictions on firmware operations. Using these flaws, malicious firmware code can elevate privileges, permanently make the device inoperable or overwrite the trusted bootloader code to compromise the hardware wallet across reboots or storage wipes.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
KeepKey firmware 输入验证错误漏洞
Vulnerability Description
KeepKey firmware是美国KeepKey公司的一个开源 KeepKey 的设备固件。 KeepKey 7.3.2之前版本存在安全漏洞,该漏洞源于lib/board/supervise.c错误的处理了svhandler_flash_*地址范围检查。
CVSS Information
N/A
Vulnerability Type
N/A