CVE-2006-1538

medium

Description

The Enova X-Wall ASIC encrypts with a key obtained via Microwire from a serial EEPROM that stores the key in cleartext, which allows local users with physical access to obtain the key by reading and duplicating an EEPROM that is located on a hardware token, or by sniffing the Microwire bus.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25527

http://www.securityfocus.com/archive/1/429253/100/0/threaded

http://www.hexview.com/docs/20060328-1.txt

http://securityreason.com/securityalert/648

Details

Source: Mitre, NVD

Published: 2006-03-30

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00072