Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 3, 2025

CVE-2025-59703

Description

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to access the internal components of the appliance, without leaving tamper evidence. To exploit this, the attacker needs to remove the tamper label and all fixing screws from the device without damaging it. This is called an F14 attack.

Affected products

Entrust/nShield Connect XC, nShield 5c, and nShield HSMidescription
Entrust/nShield Connect XCllm-fuzzy
Range: <=13.6.11 || =13.7
Entrust/nShield 5cllm-fuzzy
Range: <=13.6.11 || =13.7
Entrust/nShield HSMillm-fuzzy
Range: <=13.6.11 || =13.7

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/google/security-research/security/advisories/GHSA-6q4x-m86j-gfwjmitre
www.entrust.com/use-case/why-use-an-hsmmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000