Description
The product uses physical debug or test interfaces with support for multiple access levels, but it assigns the wrong debug access level to an internal asset, providing unintended access to the asset from untrusted debug agents.
CVE vulnerabilities with CWE-1244 (12)
8.6
CVSS
HIGH
CVE-2020-5372
pub. 2020-07-06
8.2
CVSS
HIGH
CVE-2025-42878
pub. 2025-12-09
8.1
CVSS
HIGH
CVE-2024-0114
pub. 2025-03-05
7.8
CVSS
HIGH
CVE-2026-29642
pub. 2026-04-20
6.7
CVSS
MEDIUM
CVE-2025-67862
pub. 2026-06-09
6.7
CVSS
MEDIUM
CVE-2025-23337
pub. 2025-09-17
6.5
CVSS
MEDIUM
CVE-2022-32259
pub. 2022-06-14
6.0
CVSS
MEDIUM
CVE-2025-20238
pub. 2025-08-14
4.5
CVSS
MEDIUM
CVE-2025-23252
pub. 2025-06-18
4.2
CVSS
MEDIUM
CVE-2025-23301
pub. 2025-09-04
4.2
CVSS
MEDIUM
CVE-2025-23302
pub. 2025-09-04
2.4
CVSS
LOW
CVE-2025-36755
pub. 2025-12-12