Buffer Overflow Vulnerability in IDEMIA Morpho Wave Compact and VisionPass Devices

CVE-2021-35520 · MEDIUM Severity

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2 allows physically proximate authenticated attackers to achieve code execution, denial of services, and information disclosure via serial ports.

Learn more about our Physical Security Assessment.