Reliance on Component That is Not Updateable
CVE-2021-38398
Summary
The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. A malicious attacker with physical access to the affected device could exploit these vulnerabilities.
- LOW
- PHYSICAL
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-1329 - Reliance on Component That is Not Updateable
The product contains a component that cannot be updated or patched in order to remove vulnerabilities or significant bugs.
References
Advisory Timeline
- Published