Lucene search

[email protected]CVE-2015-7268

HistoryNov 27, 2017 - 10:29 p.m.

CVE-2015-7268

2017-11-2722:29:00

CWE-254

[email protected]

web.nvd.nist.gov

cve-2015-7268

samsung 850 pro

pm851

seagate st500lt015

st500lt025

self-encrypting drive

sed protection

forced restart attack

windows

opal mode

lenovo thinkpad t440s

lenovo thinkpad w541

dell latitude e6410

dell latitude e6430

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

4.2 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.2%

JSON

Samsung 850 Pro and PM851 solid-state drives and Seagate ST500LT015 and ST500LT025 hard disk drives, when used on Windows and operating in Opal mode on Lenovo ThinkPad T440s laptops with BIOS 2.32 or ThinkPad W541 laptops with BIOS 2.21, or in Opal or eDrive mode on Dell Latitude E6410 laptops with BIOS A16 or Latitude E6430 laptops with BIOS A16, allow physically proximate attackers to bypass self-encrypting drive (SED) protection by triggering a soft reset and booting from an alternative OS, aka a “Forced Restart Attack.”

Affected configurations

NVD

Node

samsung850_pro_firmwareMatch-

AND

samsung850_proMatch-

Node

samsungpm851_firmwareMatch-

AND

samsungpm851Match-

Node

seagatest500lt015_firmwareMatch-

AND

seagatest500lt015Match-

Node

seagatest500lt025_firmwareMatch-

AND

seagatest500lt025Match-

CPENameOperatorVersion
samsung:850_pro_firmwaresamsung 850 pro firmwareeq-

CPE	Name	Operator	Version
samsung:850_pro_firmware	samsung 850 pro firmware	eq	-

References

www.blackhat.com/docs/eu-15/materials/eu-15-Boteanu-Bypassing-Self-Encrypting-Drives-SED-In-Enterprise-Environments-wp.pdf

www.infoworld.com/article/3004913/encryption/self-encrypting-drives-are-hardly-any-better-than-software-based-encryption.html

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

4.2 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.2%

JSON

Related for CVE-2015-7268

nvd1 cvelist1 prion1