Code Vulnerability in Solstice Pod by Mersive
CVE-2020-35587

7.5HIGH

Key Information:

Vendor

Mersive

Status
Solstice Firmware
Vendor
CVE Published:
23 December 2020

What is CVE-2020-35587?

The Solstice Pod firmware versions prior to 3.0.3 are vulnerable due to easily decompiled or disassembled code, which appears unprotected and non-obfuscated. This lack of obfuscation may not directly indicate a risk but could improve the feasibility of certain attack techniques. Security strategies that rely on code protection may be compromised as a result, warranting attention from users and administrators.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://documentation.mersive.com/content/pages/release-n...
x_refsource_MISC
https://www.mersive.com/uk/products/solstice/
x_refsource_MISC
https://github.com/aress31/solstice-pod-cves
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.