CVE-2022-28383

Name of the Vulnerable Software and Affected Versions Verbatim drives (affected versions not specified)

Description An issue was discovered in certain Verbatim drives due to insufficient firmware validation. An attacker can store malicious firmware code for the USB-to-SATA bridge controller on the USB drive, which is then executed. This affects various Verbatim drive models, including Keypad Secure USB 3.2 Gen 1 Drive, Store 'n' Go Secure Portable HDD, Executive Fingerprint Secure SSD, and Fingerprint Secure Portable Hard Drive.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.