CVE Vulnerabilities

CVE-2006-2707

Published: May 31, 2006 | Modified: Jul 20, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 does not validate the peer certificate when obtaining an update, which could allow remote attackers to distribute malicious updates to clients.

Affected Software

Name Vendor Start Version End Version
Class_5_enterprise_vulnerability_management Secure_elements 2.8.0 2.8.0

References