Coldcard Mk1 Firmware
1 CVEs
product
Monthly
On Coldcard MK1 and MK2 devices, a side channel for the row-based OLED display was found. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Information Disclosure
Coldcard Mk1 Firmware
Coldcard Mk2 Firmware
NVD
GitHub
CVSS 3.1
5.3
EPSS
1.2%
EPSS 1%
CVSS 5.3
MEDIUM
POC
PATCH
This Month
On Coldcard MK1 and MK2 devices, a side channel for the row-based OLED display was found. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Information Disclosure
Coldcard Mk1 Firmware
Coldcard Mk2 Firmware
NVD
GitHub