Security News

Cybersecurity news aggregator

🔓
HIGH Vulnerabilities NIST NVD

CVE-2025-59104: With physical access to the device and enough time an attacker is able to solder test leads to the d...

cve-2025-59104privilege-escalationcommand-injectionmitre-ta0004mitre-t1068
CVE-2025-59104 describes a vulnerability where an attacker with physical access to a device can solder test leads to the debug footprint and gain access to the bootloader. By modifying the kernel command line, the attacker can obtain a root shell, leading to complete system compromise.
Read Full Article →

With physical access to the device and enough time an attacker is able to solder test leads to the debug footprint (or use the 6-Pin tag-connect cable). Thus, the attacker gains access to the bootloader, where the kernel command line can be changed. An attacker is able to gain a root shell through this vulnerability.

Related Articles

MEDIUM Kubernetes Remote Code Execution Via Nodes/Proxy GET Permission Reddit r/netsec HIGH NCSC-2026-0106 [1.00] [M/H] Kwetsbaarheden verholpen in Cisco Integrated Management Controller NCSC Netherlands HIGH VU#818729: Safetica contains a kernel driver vulnerability CERT/CC HIGH Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability Cisco Security
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn