Unfortunately, lack of updates and patching makes firmware vulnerabilitiesextremely common. In fact, Eclypsium has found that well over 95% ofdevices contain at least one vulnerability in real-world environments. Avulnerability could be as simple as a component not requiring firmwareupdates to be signed, thus allowing an attacker to replace the firmwarewith a malicious image.