CVE-2022-25213

Improper physical access control and use of hard-coded credentials in /etc/passwd permits an attacker with physical access to obtain a root shell via an unprotected UART port on the device. The same port exposes an unauthenticated Das U-Boot BIOS shell.
References
Link Resource
https://www.tenable.com/security/research/tra-2022-01 Exploit Third Party Advisory
Configurations

Configuration 1


Information

Published : 2022-03-10 05:47

Updated : 2022-03-17 07:30


NVD link : CVE-2022-25213

Mitre link : CVE-2022-25213

Products Affected
No products.
CWE