Unrated severityNVD Advisory· Published May 7, 2022· Updated Aug 3, 2024
CVE-2022-30330
CVE-2022-30330
Description
In the KeepKey firmware before 7.3.2,Flaws in the supervisor interface can be exploited to bypass important security restrictions on firmware operations. Using these flaws, malicious firmware code can elevate privileges, permanently make the device inoperable or overwrite the trusted bootloader code to compromise the hardware wallet across reboots or storage wipes.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- KeepKey/KeepKey firmwaredescription
- Range: <7.3.2
Patches
Vulnerability mechanics
References
3- blog.inhq.net/posts/keepkey-CVE-2022-30330/mitrex_refsource_MISC
- github.com/keepkey/keepkey-firmware/commit/447c1f038a31378ab9589965c098467d9ea6ccccmitrex_refsource_MISC
- github.com/keepkey/keepkey-firmware/releases/tag/v7.3.2mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.