CVE-2022-28383
- EPSS 0.12%
- Veröffentlicht 08.06.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:57:15
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to insufficient firmware validation, an attacker can store malicious firmware code for the USB-to-SATA bridge controller on the USB drive (e.g., by leveraging physical access ...
CVE-2022-28385
- EPSS 0.09%
- Veröffentlicht 08.06.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:57:16
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to missing integrity checks, an attacker can manipulate the content of the emulated CD-ROM drive (containing the Windows and macOS client software). The content of this emulat...
CVE-2022-28387
- EPSS 0.2%
- Veröffentlicht 08.06.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:57:16
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to an insecure design, they can be unlocked by an attacker who can then gain unauthorized access to the stored data. The attacker can simply use an undocumented IOCTL command ...
CVE-2022-28382
- EPSS 0.67%
- Veröffentlicht 08.06.2022 16:15:07
- Zuletzt bearbeitet 21.11.2024 06:57:15
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to the use of an insecure encryption AES mode (Electronic Codebook, aka ECB), an attacker may be able to extract information even from encrypted data, for example by observing...