CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-28387

An issue was discovered in certain Verbatim drives through 2022-03-31. Due to an insecure design, they can be unlocked by an attacker who can then gain unauthorized access to the stored data. The attacker can simply use an undocumented IOCTL command that retrieves the correct password. This affects Executive Fingerprint Secure SSD GDMSFE01-INI3637-C VER1.1 and Fingerprint Secure Portable Hard Drive Part Number #53650.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.8%

CVSS Severity

CVSS v3 Score 4.6

CVSS v2 Score 2.1

References

Products affected by CVE-2022-28387

Verbatim » Executive Fingerprint Secure Ssd » Version: N/A

cpe:2.3:h:verbatim:executive_fingerprint_secure_ssd:-
Verbatim » Fingerprint Secure Portable Hard Drive » Version: N/A

cpe:2.3:h:verbatim:fingerprint_secure_portable_hard_drive:-
Verbatim » Executive Fingerprint Secure Ssd Firmware » Version: Any

cpe:2.3:o:verbatim:executive_fingerprint_secure_ssd_firmware:*
Verbatim » Fingerprint Secure Portable Hard Drive Firmware » Version: Any

cpe:2.3:o:verbatim:fingerprint_secure_portable_hard_drive_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-28387

Products

Pricing

Contact Us