Lucene search

[email protected]NVD:CVE-2010-0228

HistoryJan 07, 2010 - 7:30 p.m.

CVE-2010-0228

2010-01-0719:30:00

CWE-310

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

21.3%

JSON

Verbatim Corporate Secure and Corporate Secure FIPS Edition USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents, which makes it easier for physically proximate attackers to read or modify data by determining and providing this key.

Affected configurations

Nvd

Node

verbatimcorporate_secure

verbatimcorporate_securefips

VendorProductVersionCPE
verbatimcorporate_secure*cpe:2.3:h:verbatim:corporate_secure:*:*:*:*:*:*:*:*
verbatimcorporate_secure*cpe:2.3:h:verbatim:corporate_secure:*:*:fips:*:*:*:*:*

Vendor	Product	Version	CPE
verbatim	corporate_secure	*	cpe:2.3:h:verbatim:corporate_secure::::::::
verbatim	corporate_secure	*	cpe:2.3:h:verbatim:corporate_secure:::fips:::::*

References

blogs.zdnet.com/hardware/?p=6655

it.slashdot.org/story/10/01/05/1734242/

www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html

www.verbatim.com/security/security-update.cfm

www.ironkey.com/usb-flash-drive-flaw-exposed

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

21.3%

JSON

Related for NVD:CVE-2010-0228

cve1 prion1 cvelist1