CVE-2019-10706
N/A
N/A
Summary
Western Digital SanDisk SanDisk X300, X300s, X400, and X600 devices: The firmware update authentication method relies on a symmetric HMAC digest. The key used to validate this digest is present in a protected area of the device, and if extracted could be used to install arbitrary firmware to other devices.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://support.wdc.com/cat_products.aspx?ID=6&lang=en
- https://www.westerndigital.com/support/productsecurity/wdc-19006-sandisk-x600-sata-ssd
- https://www.westerndigital.com/support/productsecurity/wdc-19007-sandisk-x300-x400-sata-ssd
References
- https://support.wdc.com/cat_products.aspx?ID=6&lang=en
- https://www.westerndigital.com/support/productsecurity/wdc-19006-sandisk-x600-sata-ssd
- https://www.westerndigital.com/support/productsecurity/wdc-19007-sandisk-x300-x400-sata-ssd
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.