CVE-2025-59693

CRITICAL

Entrust nShield Connect XC, nShield 5c, and nShield HSMi < 13.6.12 - Privilege Escalation via JTAG Connector Access

Title source: llm

Description

The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to obtain debug access and escalate privileges by bypassing the tamper label and opening the chassis without leaving evidence, and accessing the JTAG connector. This is called F02.

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://github.com/google/security-research/security/advisories/GHSA-6q4x-m86j-gfwj

Product

https://www.entrust.com/use-case/why-use-an-hsm

Scores

CVSS v3 9.8

EPSS 0.0066

EPSS Percentile 46.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-269

Status published

Products (5)

entrust/nshield_5c_firmware < 13.6.12

entrust/nshield_connect_xc_base_firmware < 13.6.12

entrust/nshield_connect_xc_high_firmware < 13.6.12

entrust/nshield_connect_xc_mid_firmware < 13.6.12

entrust/nshield_hsmi_firmware < 13.6.12

Published Dec 02, 2025

Tracked Since Feb 18, 2026