Gregory's ServerA critical security flaw in YubiKey's two-factor authentication tokens allows potential cloning due to an issue in the Infineon cryptographic library. Affected models include YubiKey 5, Bio, Security Key, and YubiHSM 2 with older firmware. Newer models are not affected https://alternativeto.net/news/2024/9/critical-flaw-in-yubikey-tokens-enables-potential-cloning-affects-older-models/
 1 comment
|
@alternativeto „critical” is HUGE exaggeration. Long, physical access, during auth is required (and CVSS for this flaw is 4.9/10)