{"id":"CVE-2025-59697","details":"Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a physically proximate attacker to escalate privileges by editing the Legacy GRUB bootloader configuration to start a root shell upon boot of the host OS. This is called F06.","modified":"2026-03-14T12:44:11.636748Z","published":"2025-12-02T15:15:55.277Z","related":["GHSA-6q4x-m86j-gfwj"],"references":[{"type":"WEB","url":"https://www.entrust.com/use-case/why-use-an-hsm"},{"type":"EVIDENCE","url":"https://github.com/google/security-research/security/advisories/GHSA-6q4x-m86j-gfwj"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"13.6.12"}]},{"events":[{"introduced":"13.7"},{"fixed":"13.9.0"}]},{"events":[{"introduced":"0"},{"fixed":"13.6.12"}]},{"events":[{"introduced":"13.7"},{"fixed":"13.9.0"}]},{"events":[{"introduced":"0"},{"fixed":"13.6.12"}]},{"events":[{"introduced":"13.7"},{"fixed":"13.9.0"}]},{"events":[{"introduced":"0"},{"fixed":"13.6.12"}]},{"events":[{"introduced":"13.7"},{"fixed":"13.9.0"}]},{"events":[{"introduced":"0"},{"fixed":"13.6.12"}]},{"events":[{"introduced":"13.7"},{"fixed":"13.9.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-59697.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H"}]}