CVE-2025-59693

Entrust · nShield Connect

Entrust nShield HSM devices allow physically proximate attackers to bypass tamper seals and access JTAG interfaces to gain unauthorized debug access and escalate privileges.

Executive summary

A critical vulnerability in Entrust nShield HSMs allows physically proximate attackers to bypass security measures and gain elevated debug access via JTAG.

Vulnerability

This is a physical security and privilege escalation vulnerability where an attacker can bypass tamper-evident labels to access the internal JTAG connector. This provides unauthenticated, low-level hardware access to the device's management board.

Business impact

The compromise of a Hardware Security Module (HSM) represents a severe risk to organizational cryptographic integrity. With a CVSS score of 9.8, this flaw could allow an attacker to extract sensitive keys, manipulate audit logs, or permanently compromise the trust root of the enterprise, leading to catastrophic data breaches and loss of regulatory compliance.

Remediation

Immediate Action: Restrict physical access to all nShield HSM hardware to authorized personnel only and contact Entrust support for specific firmware guidance or hardware physical security upgrades.

Proactive Monitoring: Implement strict physical access logs and surveillance for all server rooms and cages housing HSM equipment.

Compensating Controls: Utilize physical tamper-detection sensors and reinforce environmental security controls to detect unauthorized cabinet or chassis access attempts.

Exploitation status

Public Exploit Available: false

Analyst recommendation

Given the critical nature of HSMs in the security architecture, organizations must treat this as a high-priority physical security risk. We recommend immediate physical inspection of all units and engagement with the vendor to determine if the specific deployment requires hardware-level remediation or firmware updates.