Vulnerability CVE-2017-5695


Published: 2017-08-09

Description:
Data corruption vulnerability in firmware in Intel Solid-State Drive Consumer, Professional, Embedded, Data Center affected firmware versions LSBG200, LSF031C, LSF036C, LBF010C, LSBG100, LSF031C, LSF036C, LBF010C, LSF031P, LSF036P, LBF010P, LSF031P, LSF036P, LBF010P, LSMG200, LSF031E, LSF036E, LSMG100, LSF031E, LSF036E, LSDG200, LSF031D, LSF036D allows local users to cause a denial of service via unspecified vectors.

Type:

CWE-20

(Improper Input Validation)

CVSS2 => (AV:L/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Intel -> Ssd pro 5400s m.2 firmware 
Intel -> Ssd e 5400s m.2 firmware 
Intel -> Ssd 540s 2.5" firmware 
Intel -> Ssd pro 5400s 2.5" firmware 
Intel -> Ssd 540s series m.2 firmware 
Intel -> Ssd dc s3100 firmware 
Intel -> Ssd e 5400s 2.5" firmware 

 References:
http://support.lenovo.com/us/en/solutions/LEN-26626
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00079&languageid=en-fr

Copyright 2024, cxsecurity.com

 

Back to Top