Self-Encrypting Solid-State Drive Vulnerabilities
Microsoft have released details of several vulnerabilities in the hardware encryption of certain Samsung and Crucial-branded self-encrypting solid-state drives.
This content has been archived
This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk
Summary
Microsoft have released details of several vulnerabilities in the hardware encryption of certain Samsung and Crucial-branded self-encrypting solid-state drives.
Threat details
A local attacker could exploit these vulnerabilities to obtain access to sensitive information.
For further information:
Remediation steps
| Type | Step |
|---|---|
|
Users and administrators are encouraged to review Microsoft's Security Advisory ADV180028 and Samsung's Customer Notice regarding their SSDs for more information and refer to vendors for appropriate patches and recommendations, when available. |
CVE Vulnerabilities
Last edited: 17 February 2020 12:54 pm