CVE-2025-59693
Entrust · nShield Connect
Entrust nShield HSM devices allow physically proximate attackers to bypass tamper seals and access JTAG interfaces to gain unauthorized debug access and escalate privileges.
Executive summary
A critical vulnerability in Entrust nShield HSMs allows physically proximate attackers to bypass security measures and gain elevated debug access via JTAG.
Vulnerability
This is a physical security and privilege escalation vulnerability where an attacker can bypass tamper-evident labels to access the internal JTAG connector. This provides unauthenticated, low-level hardware access to the device's management board.
Business impact
The compromise of a Hardware Security Module (HSM) represents a severe risk to organizational cryptographic integrity. With a CVSS score of 9.8, this flaw could allow an attacker to extract sensitive keys, manipulate audit logs, or permanently compromise the trust root of the enterprise, leading to catastrophic data breaches and loss of regulatory compliance.
Remediation
Immediate Action: Restrict physical access to all nShield HSM hardware to authorized personnel only and contact Entrust support for specific firmware guidance or hardware physical security upgrades.
Proactive Monitoring: Implement strict physical access logs and surveillance for all server rooms and cages housing HSM equipment.
Compensating Controls: Utilize physical tamper-detection sensors and reinforce environmental security controls to detect unauthorized cabinet or chassis access attempts.
Exploitation status
Public Exploit Available: false
Analyst recommendation
Given the critical nature of HSMs in the security architecture, organizations must treat this as a high-priority physical security risk. We recommend immediate physical inspection of all units and engagement with the vendor to determine if the specific deployment requires hardware-level remediation or firmware updates.