CVE-2015-7268

Samsung 850 Pro and PM851 solid-state drives and Seagate ST500LT015 and ST500LT025 hard disk drives, when used on Windows and operating in Opal mode on Lenovo ThinkPad T440s laptops with BIOS 2.32 or ThinkPad W541 laptops with BIOS 2.21, or in Opal or eDrive mode on Dell Latitude E6410 laptops with BIOS A16 or Latitude E6430 laptops with BIOS A16, allow physically proximate attackers to bypass self-encrypting drive (SED) protection by triggering a soft reset and booting from an alternative OS, aka a "Forced Restart Attack."

CVSS v3 4.2 MEDIUM
CVSS v2.0 1.9 LOW

4.2^/10

CVSS v3 : MEDIUM

Vector : AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability : 0.5 / Impact : 3.6

Attack Vector PHYSICAL

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

1.9^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:M/Au:N/C:P/I:N/A:N

Exploitability : 3.4 / Impact : 2.9

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://www.blackhat.com/docs/eu-15/materials/eu-15-Boteanu-Bypassing-Self-Encrypting-Drives-SED-In-Enterprise-Environments-wp.pdf	Technical Description Third Party Advisory
https://www.infoworld.com/article/3004913/encryption/self-encrypting-drives-are-hardly-any-better-than-software-based-encryption.html	Technical Description Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:samsung:850_pro_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:850_pro:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:samsung:pm851_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:pm851:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:seagate:st500lt015_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:seagate:st500lt015:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:seagate:st500lt025_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:seagate:st500lt025:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-11-27 22:29

Updated : 2024-02-28 16:04

NVD link : CVE-2015-7268

Mitre link : CVE-2015-7268

CVE.ORG link : CVE-2015-7268

JSON object : View

Products Affected

seagate

st500lt015
st500lt025
st500lt015_firmware
st500lt025_firmware

samsung

pm851_firmware
850_pro_firmware
pm851
850_pro

CWE

CWE-254

7PK - Security Features

{"id": "CVE-2015-7268", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 1.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 4.2, "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.5}]}, "published": "2017-11-27T22:29:00.287", "references": [{"url": "https://www.blackhat.com/docs/eu-15/materials/eu-15-Boteanu-Bypassing-Self-Encrypting-Drives-SED-In-Enterprise-Environments-wp.pdf", "tags": ["Technical Description", "Third Party Advisory"], "source": "cret@cert.org"}, {"url": "https://www.infoworld.com/article/3004913/encryption/self-encrypting-drives-are-hardly-any-better-than-software-based-encryption.html", "tags": ["Technical Description", "Third Party Advisory"], "source": "cret@cert.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-254"}]}], "descriptions": [{"lang": "en", "value": "Samsung 850 Pro and PM851 solid-state drives and Seagate ST500LT015 and ST500LT025 hard disk drives, when used on Windows and operating in Opal mode on Lenovo ThinkPad T440s laptops with BIOS 2.32 or ThinkPad W541 laptops with BIOS 2.21, or in Opal or eDrive mode on Dell Latitude E6410 laptops with BIOS A16 or Latitude E6430 laptops with BIOS A16, allow physically proximate attackers to bypass self-encrypting drive (SED) protection by triggering a soft reset and booting from an alternative OS, aka a \"Forced Restart Attack.\""}, {"lang": "es", "value": "Las unidades de estado s\u00f3lido Samsung 850 Pro y PM851 y las unidades de disco duro Seagate ST500LT015 y ST500LT025, cuando se utilizan en Windows y operan en modo Opal en port\u00e1tiles Lenovo ThinkPad T440s con BIOS 2.32 o port\u00e1tiles ThinkPad W541 con BIOS 2.21; o en modo Opal o eDrive en port\u00e1tiles Dell Latitude E6410 con BIOS A16; o port\u00e1tiles Latitude E6430 con BIOS A16, permiten que atacantes f\u00edsicamente cercanos omitan la protecci\u00f3n Self-Encrypting Drive (SED) desencadenando un restablecimiento parcial y arrancando desde un sistema operativo alternativo. Esto tambi\u00e9n se conoce como \"Forced Restart Attack\"."}], "lastModified": "2017-12-20T23:24:20.477", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:850_pro_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "32302DB9-927F-4232-88DF-11C134266EBB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:850_pro:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "811049BE-1584-4E45-A157-1BEDBB74D6C0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:pm851_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9513E12E-A0EF-4789-8D2D-B97032C5A65C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:pm851:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8040B236-B936-4642-8CF7-237CE39EE7F0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:seagate:st500lt015_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05C36534-C9F5-4FE1-B8C8-5BA6D021C5C7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:seagate:st500lt015:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E60BC85A-FE1F-44EB-A049-6EA987C48AE0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:seagate:st500lt025_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B999BEA-6A98-46B5-832F-76231DAA3BEA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:seagate:st500lt025:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C625B6AD-4665-42EF-91DD-F45180719768"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cret@cert.org"}