CVE-2025-59703

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to access the internal components of the appliance, without leaving tamper evidence. To exploit this, the attacker needs to remove the tamper label and all fixing screws from the device without damaging it. This is called an F14 attack.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
mitreCNA
---
---
CISA-ADPADP
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
VendorProductVersion
entrustnshield_5c_firmware
𝑥
< 13.6.12
entrustnshield_5c_firmware
13.7 ≤
𝑥
< 13.9.0
entrustnshield_hsmi_firmware
𝑥
< 13.6.12
entrustnshield_hsmi_firmware
13.7 ≤
𝑥
< 13.9.0
entrustnshield_connect_xc_base_firmware
𝑥
< 13.6.12
entrustnshield_connect_xc_base_firmware
13.7 ≤
𝑥
< 13.9.0
entrustnshield_connect_xc_mid_firmware
𝑥
< 13.6.12
entrustnshield_connect_xc_mid_firmware
13.7 ≤
𝑥
< 13.9.0
entrustnshield_connect_xc_high_firmware
𝑥
< 13.6.12
entrustnshield_connect_xc_high_firmware
13.7 ≤
𝑥
< 13.9.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/google/security-research/security/advisories/GHSA-6q4x-m86j-gfwj
https://www.entrust.com/use-case/why-use-an-hsm