Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 have Incorrect Access Control. The โgenerate reportsโ archive is protected with a hard-coded password. An application update that addresses the protection of archive encryption is available.
7.5CVSS
7.5AI Score
0.001EPSS
Description: Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources from the Dashboard web service. This vulnerability may allow an attacker to substitute dow...
5.9CVSS
5.7AI Score
0.001EPSS