Vulnerabilities > Westerndigital > Sandisk X600 Sd9Sb8W 128G

DATE CVE VULNERABILITY TITLE RISK
2020-03-10 CVE-2019-10705 Insufficiently Protected Credentials vulnerability in Westerndigital products
Western Digital SanDisk X600 devices in certain configurations, a vulnerability in the access control mechanism of the drive may allow data to be decrypted without knowledge of proper authentication credentials.
4.3
2020-03-10 CVE-2019-11686 Insufficiently Protected Credentials vulnerability in Westerndigital products
Western Digital SanDisk X300, X300s, X400, and X600 devices: A vulnerability in the wear-leveling algorithm of the drive may cause cryptographically sensitive parameters (such as data encryption keys) to remain on the drive media after their intended erasure.
local
low complexity
westerndigital CWE-522
2.1
2020-03-10 CVE-2019-10706 Insufficiently Protected Credentials vulnerability in Westerndigital products
Western Digital SanDisk SanDisk X300, X300s, X400, and X600 devices: The firmware update authentication method relies on a symmetric HMAC digest.
6.3