Zurück zum Sicherheitsportal
Missing path isolation check
Gemeldet auf July 14, 2020
Without this check, an attacker could trick the user into signing a Bitcoin transaction while thinking they are signing a testnet or altcoin transaction.
Fixed in firmware 1.9.2.
Behobene Sicherheitslücken
Gemeldet durch Community. Untersucht. Gelöst. Weil deine Sicherheit nie optional ist.
- Donjon's Trezor Safe 3 evaluationNovember 12, 2024
- Missing confirmation in the ECDHSessionKey callNovember 26, 2023
- XSS in Trezor Connect legacy versionsFebruary 7, 2023
- Insufficient field size check in ProtobufJuly 12, 2021
- XSS in Trezor ConnectAugust 3, 2020
- Malicious change in mixed transactionsMarch 7, 2020