Vulnerability CVE-2012-5860


Published: 2012-11-14

Description:
Unspecified vulnerability on Oberthur ID-One COSMO 5.2, 5.2a, and 64 smart cards makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging the generation of non-compliant public keys.

Type:

CWE-noinfo

CVSS2 => (AV:L/AC:H/Au:N/C:N/I:C/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4/10
6.9/10
1.9/10
Exploit range
Attack complexity
Authentication
Local
High
No required
Confidentiality impact
Integrity impact
Availability impact
None
Complete
None
Affected software
Oberthur -> Id-one cosmo 

 References:
http://www.kb.cert.org/vuls/id/659615
http://xforce.iss.net/xforce/xfdb/80039

Copyright 2024, cxsecurity.com

 

Back to Top