Shodan
Vulnerabilities
Vulnerable Software
Ecos:  Security Vulnerabilities
CVE-2018-12329
Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows a local attacker to duplicate an authentication factor via cloning.
CVSS Score
5.9
EPSS Score
0.003
Published
2018-06-17
CVE-2018-12330
Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via compromised firmware.
CVSS Score
8.1
EPSS Score
0.001
Published
2018-06-17
CVE-2018-12331
Authentication Bypass by Spoofing vulnerability in ECOS System Management Appliance (aka SMA) 5.2.68 allows a man-in-the-middle attacker to compromise authentication keys and configurations via IP spoofing during "Easy Enrollment."
CVSS Score
7.4
EPSS Score
0.002
Published
2018-06-17
CVE-2018-12332
Incomplete Cleanup vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via a compromised host PC after a reset.
CVSS Score
4.2
EPSS Score
0.0
Published
2018-06-17
CVE-2018-12333
Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.
CVSS Score
8.1
EPSS Score
0.001
Published
2018-06-17
CVE-2018-12334
Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via a virtualization attack.
CVSS Score
7.5
EPSS Score
0.002
Published
2018-06-17
CVE-2018-12335
Incorrect access control in ECOS System Management Appliance (aka SMA) 5.2.68 allows a user to compromise authentication keys, and access and manipulate security relevant configurations, via unrestricted database access during Easy Enrollment.
CVSS Score
7.3
EPSS Score
0.001
Published
2018-06-17
CVE-2018-12336
Undocumented Factory Backdoor in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows the vendor to extract confidential information via remote root SSH access.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-06-17
CVE-2018-12337
Reliance on Security Through Obscurity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to partially extract confidential configurations via user-space emulation.
CVSS Score
4.6
EPSS Score
0.001
Published
2018-06-17
CVE-2018-12338
Undocumented Factory Backdoor in ECOS System Management Appliance (aka SMA) 5.2.68 allows the vendor to extract confidential information and manipulate security relevant configurations via remote root SSH access.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-06-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved