← back
CVE-2021-22887

CVE-2021-22887

EPSS 0.2%CWE-506
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
16 Mar 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability in the BIOS of Pulse Secure (PSA-Series Hardware) models PSA5000 and PSA7000 could allow an attacker to compromise BIOS firmware. This vulnerability can be exploited only as part of an attack chain. Before an attacker can compromise the BIOS, they must exploit the device.
Affected products
n/a · PSA5000, PSA7000

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44712https://www.supermicro.com/en/support/security/Trickbot