Description
Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR01 does not validate file attributes or the contents of /root during integrity validation. This allows code execution, recovery of TPM Disk Encryption keys, decryption of the Windows system partition, and full control of the Windows OS, e.g., through ~/.profile changes.
References
www.dieboldnixdorf.com/...nking/portfolio/software/security/
www.atredis.com/.../2025/8/26/24nrgne4dqbwjxyip7txn8ep6zj057
