PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-13199 Raspberry Pi CVE debrief

The CVE record for CVE-2026-13199 was published on 2026-07-07T09:16:29.857Z and has not been modified since then. The NVD entry is currently not providing additional information. The vulnerability affects Raspberry Pi 5 and Compute Module 5 devices, specifically the EEPROM firmware, which produced non-random KASLR and RNG seed values. This resulted in consistent kernel addresses across boots and devices, potentially making it easier to exploit other vulnerabilities. The low-quality RNG seed may affect the quality of random numbers or delay booting while sufficient entropy is accumulated from other sources.

Vendor
Raspberry Pi
Product
Raspberry Pi 5 and Compute Module 5
CVSS
MEDIUM 5.1
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-07
Original CVE updated
2026-07-07
Advisory published
2026-07-07
Advisory updated
2026-07-07

Who should care

Users of Raspberry Pi 5 and Compute Module 5 devices should verify their EEPROM firmware version and update to a fixed version if necessary. Additionally, users should monitor for other potential vulnerabilities that may be exploited in conjunction with this issue. Security teams and platform operators should review the vulnerability and assess their exposure.

Technical summary

EEPROM firmware on Raspberry Pi 5 and Compute Module 5 devices produced non-random KASLR and RNG seed values, resulting in consistent kernel addresses across boots and devices. This may make it easier to exploit other vulnerabilities. The low-quality RNG seed may affect the quality of random numbers or delay booting while sufficient entropy is accumulated from other sources. The vulnerability requires local access and may be used to exploit other vulnerabilities.

Defensive priority

Medium priority, as the vulnerability requires local access and may be used to exploit other vulnerabilities.

Recommended defensive actions

  • Verify EEPROM firmware version on Raspberry Pi 5 and Compute Module 5 devices
  • Update to a fixed firmware version if necessary
  • Monitor for other potential vulnerabilities that may be exploited in conjunction with this issue
  • Review compensating controls for exposed systems while remediation is scheduled and verified
  • Check relevant monitoring, detection, and logs for exposed assets that need extra review
  • Track exceptions, retest remediated assets, and close the item only after evidence is documented
  • Confirm whether affected product deployments exist in managed environments and assign an owner for follow-up

Evidence notes

The CVE record and NVD entry provide limited information about the vulnerability. Further investigation is needed to determine the full scope of the issue and potential mitigations. The Raspberry Pi 5 and Compute Module 5 devices' EEPROM firmware produced non-random KASLR and RNG seed values, which may be used to exploit other vulnerabilities. The low-quality RNG seed may affect the quality of random numbers or delay booting while sufficient entropy is accumulated from other sources. No additional details are available from the CVE record or NVD entry.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-07T09:16:29.857Z and has not been modified since then.