Skip to main content

Reliance on Component That is Not Updateable

CVE-2021-38398

Severity Medium
Score 4.6/10

Summary

The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. A malicious attacker with physical access to the affected device could exploit these vulnerabilities.

  • LOW
  • LOCAL
  • NONE
  • PARTIAL
  • PARTIAL
  • PARTIAL

CWE-1329 - Reliance on Component That is Not Updateable

The product contains a component that cannot be updated or patched in order to remove vulnerabilities or significant bugs.

References

Advisory Timeline

  • Published