Vulnerability Description
Verbatim Corporate Secure and Corporate Secure FIPS Edition USB flash drives do not prevent password replay attacks, which allows physically proximate attackers to access the cleartext drive contents by providing a key that was captured in a USB data stream at an earlier time.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Verbatim | Corporate Secure | All versions |
Related Weaknesses (CWE)
References
- http://www.verbatim.com/security/security-update.cfmVendor Advisory
- https://www.ironkey.com/usb-flash-drive-flaw-exposed
- http://www.verbatim.com/security/security-update.cfmVendor Advisory
- https://www.ironkey.com/usb-flash-drive-flaw-exposed
FAQ
What is CVE-2010-0229?
CVE-2010-0229 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Verbatim Corporate Secure and Corporate Secure FIPS Edition USB flash drives do not prevent password replay attacks, which allows physically proximate attackers to access the cleartext drive contents ...
How severe is CVE-2010-0229?
CVE-2010-0229 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-0229?
Check the references section above for vendor advisories and patch information. Affected products include: Verbatim Corporate Secure.