CVE-2016-6257
Severity Score
6.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The firmware in Lenovo Ultraslim dongles, as used with Lenovo Liteon SK-8861, Ultraslim Wireless, and Silver Silk keyboards and Liteon ZTM600 and Ultraslim Wireless mice, does not enforce incrementing AES counters, which allows remote attackers to inject encrypted keyboard input into the system by leveraging proximity to the dongle, aka a "KeyJack injection attack."
El firmware en Lenovo Ultraslim dongles, como se usa con teclados Lenovo Liteon SK-8861, Ultraslim Wireless y Silver Silk y ratones Liteon ZTM600 y Ultraslim Wireless, no fuerza incrementar contadores AES, lo que permite a atacantes remotos inyectar entrada de teclado cifrada en el sistema mediante el aprovechamiento de la proximidad al dongle, también conocido como un "ataque de inyección KeyJack".
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-07-20 CVE Reserved
- 2016-08-02 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-310: Cryptographic Issues
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/92179 | Third Party Advisory | |
| https://github.com/BastilleResearch/keyjack/blob/master/doc/advisories/bastille-13.lenovo-ultraslim.public.txt | Third Party Advisory | |
| https://www.bastille.net/research/vulnerabilities/keyjack | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.lenovo.com/product_security/len_7267 | 2021-04-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Amazonbasics Search vendor "Amazonbasics" | Firmware Search vendor "Amazonbasics" for product "Firmware" | - | - |
Affected
| in | Amazonbasics Search vendor "Amazonbasics" | Usb Dongle Search vendor "Amazonbasics" for product "Usb Dongle" | - | - |
Safe
|
| Amazonbasics Search vendor "Amazonbasics" | Firmware Search vendor "Amazonbasics" for product "Firmware" | - | - |
Affected
| in | Amazonbasics Search vendor "Amazonbasics" | Wireless Keyboard Search vendor "Amazonbasics" for product "Wireless Keyboard" | - | - |
Safe
|
| Dell Search vendor "Dell" | Km714 Firmware Search vendor "Dell" for product "Km714 Firmware" | <= 012.005.00028 Search vendor "Dell" for product "Km714 Firmware" and version " <= 012.005.00028" | - |
Affected
| in | Dell Search vendor "Dell" | Km714 Dongle Search vendor "Dell" for product "Km714 Dongle" | - | - |
Safe
|
| Dell Search vendor "Dell" | Km714 Firmware Search vendor "Dell" for product "Km714 Firmware" | <= 012.005.00028 Search vendor "Dell" for product "Km714 Firmware" and version " <= 012.005.00028" | - |
Affected
| in | Dell Search vendor "Dell" | Km714 Wireless Keyboard Search vendor "Dell" for product "Km714 Wireless Keyboard" | - | - |
Safe
|
| Dell Search vendor "Dell" | Km632 Firmware Search vendor "Dell" for product "Km632 Firmware" | - | - |
Affected
| in | Dell Search vendor "Dell" | Km632 Dongle Search vendor "Dell" for product "Km632 Dongle" | - | - |
Safe
|
| Dell Search vendor "Dell" | Km632 Firmware Search vendor "Dell" for product "Km632 Firmware" | - | - |
Affected
| in | Dell Search vendor "Dell" | Km632 Wireless Keyboard Search vendor "Dell" for product "Km632 Wireless Keyboard" | - | - |
Safe
|
| Logitech Search vendor "Logitech" | Unifying Firmware Search vendor "Logitech" for product "Unifying Firmware" | <= 012.005.00028 Search vendor "Logitech" for product "Unifying Firmware" and version " <= 012.005.00028" | - |
Affected
| in | Logitech Search vendor "Logitech" | Unifying Dongle Search vendor "Logitech" for product "Unifying Dongle" | - | - |
Safe
|
| Logitech Search vendor "Logitech" | Unifying Firmware Search vendor "Logitech" for product "Unifying Firmware" | <= 024.003.00027 Search vendor "Logitech" for product "Unifying Firmware" and version " <= 024.003.00027" | - |
Affected
| in | Logitech Search vendor "Logitech" | Unifying Dongle Search vendor "Logitech" for product "Unifying Dongle" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ultraslim Firmware Search vendor "Lenovo" for product "Ultraslim Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ultraslim Dongle Search vendor "Lenovo" for product "Ultraslim Dongle" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ultraslim Firmware Search vendor "Lenovo" for product "Ultraslim Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ultraslim Wireless Keyboard Search vendor "Lenovo" for product "Ultraslim Wireless Keyboard" | - | - |
Safe
|