Learn about CVE-2020-15001, an information leak vulnerability impacting Yubico YubiKey 5 NFC devices, potentially allowing unauthorized access to stored OTPs and passwords over NFC. Find mitigation steps and preventive measures here.
An information leak was discovered on Yubico YubiKey 5 NFC devices, potentially exposing stored OTPs and passwords over NFC.
Understanding CVE-2020-15001
What is CVE-2020-15001?
CVE-2020-15001 is an information leak vulnerability affecting Yubico YubiKey 5 NFC devices.
The Impact of CVE-2020-15001
The vulnerability allows an attacker to access configured OTPs and passwords stored in slots that were not configured by the user over NFC.
Technical Details of CVE-2020-15001
Vulnerability Description
Affected Systems and Versions
Exploitation Mechanism
Mitigation and Prevention
Immediate Steps to Take
Long-Term Security Practices
Patching and Updates