Home

Description

An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692.

PUBLISHED Reserved 2025-04-16 | Published 2025-12-09 | Updated 2025-12-09 | Assigner CERTVDE




MEDIUM: 6.8CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-1299 Missing Protection Mechanism for Alternate Hardware Interface

Product status

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Default status
unaffected

0.0.0 (semver) before 3.50
affected

Credits

D. Blagojevic, S. Dietz, F. Koroknai, T. Weber from CyberDanube finder

References

certvde.com/de/advisories/VDE-2025-071

cve.org (CVE-2025-41697)

nvd.nist.gov (CVE-2025-41697)

Download JSON