CNNVD-202512-1136 Information
CNNVD ID
CNNVD-202512-1136
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
PCI-SIG PCI Express Integrity and Data Encryption是美国PCI-SIG公司的一个数据加密软件。 PCI-SIG PCI Express Integrity and Data Encryption存在安全漏洞,该漏洞源于事务层数据包排序和标签唯一性指导不足,可能导致加密数据包被重放或重新排序而不被检测。
Description (English)
PCI-SIG PCI Enterprises Information and Data Enrichption is a data encryption software for PCI-SIG in the United States. There is a security loophole in PCI-SIG PCI Operations Information and Data Enrichption, which results from inadequate guidance on the sorting and uniqueness of service-level data packages, which may result in encrypted data packages being re-opened or rearranged without detection.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
PCI-SIG
Published
2025-12-09
Last Modified
2026-02-24
References
https://pcisig.com/PCIeIDEStandardVulnerabilities https://pcisig.com/specifications
Patch
https://pcisig.com/PCIeIDEStandardVulnerabilities
Share on: