Vulnerability: Weak Password Storage in ChipsBank UMPTool

Vulnerability: Weak Password Storage in ChipsBank UMPTool

CVE-2018-19795 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

ChipsBank UMPTool saves the password to the NAND with a simple substitution cipher, which allows attackers to get full access when having physical access to the device.

Learn more about our Physical Security Assessment.