QwikSec

Security Database

CVE

CWE

Training

CVE-2019-10706

Published: Mar 10, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

Western Digital SanDisk SanDisk X300, X300s, X400, and X600 devices: The firmware update authentication method relies on a symmetric HMAC digest. The key used to validate this digest is present in a protected area of the device, and if extracted could be used to install arbitrary firmware to other devices.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://support.wdc.com/cat_products.aspx?ID=6&lang=en

x_refsource_MISC

https://www.westerndigital.com/support/productsecurity/wdc-19006-sandisk-x600-sata-ssd

x_refsource_MISC

https://www.westerndigital.com/support/productsecurity/wdc-19007-sandisk-x300-x400-sata-ssd

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.