Vulnerability Details CVE-2021-38394
An attacker with physical access to the device can extract the binary that checks for the hardware key and reverse engineer it, which could be used to create a physical duplicate of a valid hardware key. The hardware key allows access to special settings when inserted.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.8%
CVSS Severity
CVSS v3 Score 6.2
CVSS v2 Score 6.9
References
Products affected by CVE-2021-38394
-
cpe:2.3:h:bostonscientific:zoom_latitude_pogrammer/recorder/monitor_3120:-
-
cpe:2.3:o:bostonscientific:zoom_latitude_pogrammer/recorder/monitor_3120_firmware:*