PT-2019-13352 · Sandisk+1 · Sandisk Ssd Dashboard+1

Publicado

2019-09-30

·

Atualizado

2020-08-24

·

CVE-2019-13467

CVSS v3.1

5.9

Média

VetorAV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Western Digital SSD Dashboard versions prior to 2.5.1.0 SanDisk SSD Dashboard versions prior to 2.5.1.0
Description The issue allows for man-in-the-middle attacks when the applications download resources from the Dashboard web service, potentially enabling an attacker to substitute downloaded resources with arbitrary files.
Recommendations For Western Digital SSD Dashboard versions prior to 2.5.1.0, update to version 2.5.1.0 or later. For SanDisk SSD Dashboard versions prior to 2.5.1.0, update to version 2.5.1.0 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Identificadores relacionados

CVE-2019-13467

Produtos afetados

Sandisk Ssd Dashboard
Western Digital Ssd Dashboard