Information disclosure in self-encrypting drives Micron and Samsung
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2018-12037 CVE-2018-12038 |
| CWE-ID | CWE-200 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
850 EVO Client/Desktop applications / Software for system administration 840 EVO Client/Desktop applications / Software for system administration T5 Client/Desktop applications / Software for system administration T3 Client/Desktop applications / Software for system administration MX300 Hardware solutions / Firmware MX200 Hardware solutions / Firmware MX100 Hardware solutions / Firmware |
| Vendor |
Samsung Crucial US |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Information disclosure
EUVDB-ID: #VU15755
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-12037
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a physical attacker to obtain potentially sensitive information on the target system.
The weakness exists due to the absence of a cryptographic link between the password provided by the end user and the cryptographic key used to encrypt user data. A physical attacker can access the key without knowing the password provided by the end user and decrypt information encrypted with that key.
Install updates for the vulnerable products from vendors' websites.
Vulnerable software versions850 EVO: All versions
840 EVO: All versions
T5: All versions
T3: All versions
MX300: All versions
MX200: All versions
MX100: All versions
CPE2.3- cpe:2.3:a:samsung:850_evo:*:*:*:*:*:*:*:*
- cpe:2.3:a:samsung:840_evo:*:*:*:*:*:*:*:*
- cpe:2.3:a:samsung:t5:*:*:*:*:*:*:*:*
- cpe:2.3:a:samsung:t3:*:*:*:*:*:*:*:*
- cpe:2.3:h:crucial:mx300:*:*:*:*:*:*:*:*
- cpe:2.3:h:crucial:mx200:*:*:*:*:*:*:*:*
- cpe:2.3:h:crucial:mx100:*:*:*:*:*:*:*:*
https://www.kb.cert.org/vuls/id/395981/
Q & A
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Information disclosure
EUVDB-ID: #VU15756
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-12038
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a physical attacker to obtain potentially sensitive information on the target system.
The weakness exists due to key information is stored within a wear-leveled storage chip. A physical attacker can update a key with a new password and access previous version of the key (either unprotected, or with an old password), negating the need to know the updated password.
Install updates for the vulnerable products from vendors' websites.
Vulnerable software versions850 EVO: All versions
CPE2.3 External linkshttps://www.kb.cert.org/vuls/id/395981/
Q & A
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
