Vulnerability Description
Marvell SSD Controller (88SS1074, 88SS1079, 88SS1080, 88SS1093, 88SS1092, 88SS1095, 88SS9174, 88SS9175, 88SS9187, 88SS9188, 88SS9189, 88SS9190, 88SS1085, 88SS1087, 88SS1090, 88SS1100, 88SS1084, 88SS1088, & 88SS1098) devices allow reprogramming flash memory to bypass the secure boot protection mechanism.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Marvell | 88Ss1074 Firmware | - |
| Marvell | 88Ss1074 | - |
| Marvell | 88Ss1079 Firmware | - |
| Marvell | 88Ss1079 | - |
| Marvell | 88Ss1080 Firmware | - |
| Marvell | 88Ss1080 | - |
| Marvell | 88Ss1093 Firmware | - |
| Marvell | 88Ss1093 | - |
| Marvell | 88Ss1092 Firmware | - |
| Marvell | 88Ss1092 | - |
| Marvell | 88Ss1095 Firmware | - |
| Marvell | 88Ss1095 | - |
| Marvell | 88Ss9174 Firmware | - |
| Marvell | 88Ss9174 | - |
| Marvell | 88Ss9175 Firmware | - |
| Marvell | 88Ss9175 | - |
| Marvell | 88Ss9187 Firmware | - |
| Marvell | 88Ss9187 | - |
| Marvell | 88Ss9188 Firmware | - |
| Marvell | 88Ss9188 | - |
Related Weaknesses (CWE)
References
- https://www.marvell.com/documents/x9g4hrszt5ls3udbe1eo/Vendor Advisory
- https://www.marvell.com/documents/x9g4hrszt5ls3udbe1eo/Vendor Advisory
FAQ
What is CVE-2019-10636?
CVE-2019-10636 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Marvell SSD Controller (88SS1074, 88SS1079, 88SS1080, 88SS1093, 88SS1092, 88SS1095, 88SS9174, 88SS9175, 88SS9187, 88SS9188, 88SS9189, 88SS9190, 88SS1085, 88SS1087, 88SS1090, 88SS1100, 88SS1084, 88SS10...
How severe is CVE-2019-10636?
CVE-2019-10636 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-10636?
Check the references section above for vendor advisories and patch information. Affected products include: Marvell 88Ss1074 Firmware, Marvell 88Ss1074, Marvell 88Ss1079 Firmware, Marvell 88Ss1079, Marvell 88Ss1080 Firmware.