2 matches found
CVE-2022-28383
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to insufficient firmware validation, an attacker can store malicious firmware code for the USB-to-SATA bridge controller on the USB drive e.g., by leveraging physical access during the supply chain. This code is then...
CVE-2022-28383
CVE-2022-28383 affects Verbatim drives (Keypad Secure USB Drive; Store ’n’ Go Secure Portable HDD GD25LK01-3637-C VER4.0; Executive Fingerprint Secure SSD GDMSFE01-INI3637-C VER1.1; Fingerprint Secure Portable Hard Drive). Root cause: insufficient firmware validation in the USB‑to‑SATA bridge con...