Shapeshift Keepkey Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Shapeshift Keepkey Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-31616 — CVSS 8.8 (high): Insufficient length checks in the ShapeShift KeepKey hardware wallet firmware before 7.1.0 allow a stack buffer overflow via crafted…
CVE-2018-6875 — CVSS 7.5 (high): Format String vulnerability in KeepKey version 4.0.0 allows attackers to trigger information display (of information that should not be…
CVE-2019-18672 — CVSS 7.5 (high): Insufficient checks in the finite state machine of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow a partial reset of…
CVE-2023-27892 — CVSS 3.8 (low): Insufficient length checks in the ShapeShift KeepKey hardware wallet firmware before 7.7.0 allow a global buffer overflow via crafted…
CVE-2019-14355 — CVSS 2.4 (low): On ShapeShift KeepKey devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display…