Vulnerability Details : CVE-2016-6257
The firmware in Lenovo Ultraslim dongles, as used with Lenovo Liteon SK-8861, Ultraslim Wireless, and Silver Silk keyboards and Liteon ZTM600 and Ultraslim Wireless mice, does not enforce incrementing AES counters, which allows remote attackers to inject encrypted keyboard input into the system by leveraging proximity to the dongle, aka a "KeyJack injection attack."
Products affected by CVE-2016-6257
- cpe:2.3:o:logitech:unifying_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:logitech:unifying_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:dell:km632_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:dell:km714_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:lenovo:ultraslim_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:amazonbasics:firmware:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-6257
0.17%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 55 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-6257
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.3
|
LOW | AV:A/AC:L/Au:N/C:N/I:P/A:N |
6.5
|
2.9
|
NIST | |
6.5
|
MEDIUM | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
2.8
|
3.6
|
NIST |
CWE ids for CVE-2016-6257
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-6257
-
https://github.com/BastilleResearch/keyjack/blob/master/doc/advisories/bastille-13.lenovo-ultraslim.public.txt
keyjack/bastille-13.lenovo-ultraslim.public.txt at master · BastilleResearch/keyjack · GitHubThird Party Advisory
-
https://www.bastille.net/research/vulnerabilities/keyjack
KeyJack — BastilleThird Party Advisory
-
https://support.lenovo.com/product_security/len_7267
Lenovo Ultraslim Wireless Keyboard Keystroke Injection - USVendor Advisory
-
http://www.securityfocus.com/bid/92179
Multiple Lenovo CVE-2016-6257 Products Remote Security VulnerabilityThird Party Advisory;VDB Entry
Jump to