Code injection

2023-03-2420:15:00

PRIOn knowledge base

www.prio-n.com

code injection

data integrity

man-in-the-middle

confidentiality

sandisk privateaccess

nvd

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.5%

JSON

SanDisk PrivateAccess versions prior to 6.4.9 support insecure TLS 1.0 and TLS 1.1 protocols which are susceptible to man-in-the-middle attacks thereby compromising confidentiality and integrity of data.

CPENameOperatorVersion
sandisk_privateaccesslt6.4.9

CPE	Name	Operator	Version
	sandisk_privateaccess	lt	6.4.9

References

www.westerndigital.com/support/product-security/wdc-23005-sandisk-privateaccess-software-update