rpm package
opensuse/solo&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/solo&distro=openSUSE%20Leap%2015.2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-27208 | Med | 6.8 | < 4.1.2-bp153.2.3.1 | 4.1.2-bp153.2.3.1 | May 21, 2021 | The flash read-out protection (RDP) level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade the RDP level and access secrets such as private ECC keys from SRAM via the debug |
- affected < 4.1.2-bp153.2.3.1fixed 4.1.2-bp153.2.3.1
The flash read-out protection (RDP) level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade the RDP level and access secrets such as private ECC keys from SRAM via the debug