Skip to main content

Reliance on Component That is Not Updateable

CVE-2021-38398

Severity Medium
Score 6.8/10

Summary

The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. A malicious attacker with physical access to the affected device could exploit these vulnerabilities.

  • LOW
  • PHYSICAL
  • HIGH
  • UNCHANGED
  • NONE
  • NONE
  • HIGH
  • HIGH

CWE-1329 - Reliance on Component That is Not Updateable

The product contains a component that cannot be updated or patched in order to remove vulnerabilities or significant bugs.

References

Advisory Timeline

  • Published