Ledger Security Bulletins

Ledger believes in better security through openness. The Ledger Security Bulletins describe technical details of past security issues, their potential impact and available patches or workaround.

If you believe that you have discovered a vulnerability, please report it through the bug bounty program.

DateTitle
2023-11-20LSB 020: Ledger Live incorrectly parses some EIP-712 messages
2023-05-11LSB 019: Invalid addresses for certain miniscript policies
2022-08-05LSB 018: Invalid command processing on HSM firmware
2022-07-04LSB 017: Keycard bypass on Ledger HW.1
2021-05-17LSB 016: Length-extension attack on SCP
2021-01-13LSB 015: TX data of unsupported crypto assets are not displayed by the Ethereum app 1.6.0
2020-08-04LSB 014: Path derivation too permissive in Bitcoin derivative apps
2020-07-08LSB 013: JTAG/SWD Protocols Enabled on STM32WB55 Unsecured Processor
2020-07-02LSB 012: Incorrect BTC balance in Ledger Live with RBF UTXOs
2020-06-09LSB 011: XRP account misuse and transaction malleability
2020-06-03LSB 010: Massive transaction fees in BTC app and derivative
2020-04-30LSB 009: Monero funds lock-up
2020-04-27LSB 008: Monero private key retrieval
2019-10-04LSB 007: Monero private key retrieval
2019-08-07LSB 006: OLED screen side-channel vulnerability
2018-12-27LSB 005: MCU bootloader verification bypass
2018-11-28LSB 004: Bitcoin change address injection
2018-03-20LSB 003: Isolation vulnerability
2018-03-20LSB 002: Supply chain attack
2018-03-20LSB 001: Padding oracle attack on SCP

Note: these security bulletins are inspired by Qubes Security Bulletins but aren’t related in any way.