Details of VAR-201711-0010

ID

VAR-201711-0010

CVE

CVE-2015-7268

TITLE

Samsung 850 Pro/PM851 of SSD and Seagate ST500LT015/ST500LT025 of HDD Vulnerabilities that bypass security functions

Trust: 0.8

sources: JVNDB: JVNDB-2015-008067

DESCRIPTION

Samsung 850 Pro and PM851 solid-state drives and Seagate ST500LT015 and ST500LT025 hard disk drives, when used on Windows and operating in Opal mode on Lenovo ThinkPad T440s laptops with BIOS 2.32 or ThinkPad W541 laptops with BIOS 2.21, or in Opal or eDrive mode on Dell Latitude E6410 laptops with BIOS A16 or Latitude E6430 laptops with BIOS A16, allow physically proximate attackers to bypass self-encrypting drive (SED) protection by triggering a soft reset and booting from an alternative OS, aka a "Forced Restart Attack.". Samsung 850 Pro/PM851 Solid state drives and Seagate ST500LT015/ST500LT025 There are vulnerabilities in hard disk drives that can bypass security functions.Information may be obtained. LenovoThinkPadT440slaptop is a laptop from Lenovo China. The DellLatitudeE6410laptop is a laptop from Dell. Samsung850Pro, etc. are all hard drives used in laptops. The Samsung850Pro is a hard disk manufactured by Samsung in South Korea. The Seagate ST500LT015 is a hard drive manufactured by Seagate. There are security holes in the Samsung850Pro, PM851 SSD, SeagateST500LT015 and ST500LT025 hard drives on several devices. An attacker with a physical location approach can exploit the vulnerability to bypass self-encrypting hard disk protection by implementing a forced restart attack. Samsung/Seagate Self-Encrypting Drives Protection are prone to a local security-bypass vulnerability. This may aid in further attacks. The following products are vulnerable: Seagate ST500LT015 and ST500LT025 Samsung 850 Pro and PM851. Samsung 850 Pro etc. The following products are affected: Lenovo ThinkPad T440s laptop using BIOS version 2.32; ThinkPad W541 laptop using BIOS version 2.21; Dell Latitude E6410 laptop using BIOS version A16; Latitude E6430 laptop using BIOS version A16

Trust: 2.52

sources: NVD: CVE-2015-7268 // JVNDB: JVNDB-2015-008067 // CNVD: CNVD-2017-38306 // BID: 102334 // VULHUB: VHN-85229

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-38306

AFFECTED PRODUCTS

vendor:	samsung	model:	pm851	scope:	eq	version:	-	Trust: 1.6
vendor:	samsung	model:	850 pro	scope:	eq	version:	-	Trust: 1.6
vendor:	samsung	model:	pm851	scope:	-	version:	-	Trust: 1.4
vendor:	seagate	model:	st500lt015	scope:	eq	version:	-	Trust: 1.0
vendor:	seagate	model:	st500lt025	scope:	eq	version:	-	Trust: 1.0
vendor:	seagate	model:	st500lt015	scope:	-	version:	-	Trust: 0.8
vendor:	seagate	model:	st500lt025	scope:	-	version:	-	Trust: 0.8
vendor:	samsung	model:	850 pro	scope:	-	version:	-	Trust: 0.8
vendor:	samsung	model:	pro	scope:	eq	version:	850	Trust: 0.6
vendor:	seagate	model:	technology st500lt015	scope:	-	version:	-	Trust: 0.6
vendor:	seagate	model:	technology st500lt025	scope:	-	version:	-	Trust: 0.6
vendor:	seagate	model:	st500lt025	scope:	eq	version:	0	Trust: 0.3
vendor:	seagate	model:	st500lt015	scope:	eq	version:	0	Trust: 0.3
vendor:	samsung	model:	pm851	scope:	eq	version:	0	Trust: 0.3
vendor:	samsung	model:	pro	scope:	eq	version:	8500	Trust: 0.3

sources: CNVD: CNVD-2017-38306 // BID: 102334 // JVNDB: JVNDB-2015-008067 // CNNVD: CNNVD-201711-1081 // NVD: CVE-2015-7268

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-7268
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-7268
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-38306
value:	LOW
Trust: 0.6
CNNVD:	CNNVD-201711-1081
value:	LOW
Trust: 0.6
VULHUB:	VHN-85229
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2015-7268
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-38306
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-85229
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2015-7268
baseSeverity:	MEDIUM
baseScore:	4.2
vectorString:	CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	PHYSICAL
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	0.5
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-38306 // VULHUB: VHN-85229 // JVNDB: JVNDB-2015-008067 // CNNVD: CNNVD-201711-1081 // NVD: CVE-2015-7268

PROBLEMTYPE DATA

problemtype:

CWE-254

Trust: 1.9

sources: VULHUB: VHN-85229 // JVNDB: JVNDB-2015-008067 // NVD: CVE-2015-7268

THREAT TYPE

local

Trust: 0.9

sources: BID: 102334 // CNNVD: CNNVD-201711-1081

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201711-1081

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-008067

PATCH

title:	Samsung 850 Pro	url:	http://www.samsung.com/semiconductor/minisite/jp/ssd/consumer/850pro/	Trust: 0.8
title:	Samsung PM851 Solid State Drive	url:	https://www.samsung.com/us/business/oem-solutions/pdfs/PM851-SSD-ProdOverview.pdf	Trust: 0.8
title:	Top Page	url:	https://www.seagate.com/jp/ja/	Trust: 0.8

sources: JVNDB: JVNDB-2015-008067

EXTERNAL IDS

db:	NVD	id:	CVE-2015-7268	Trust: 3.4
db:	JVNDB	id:	JVNDB-2015-008067	Trust: 0.8
db:	CNNVD	id:	CNNVD-201711-1081	Trust: 0.7
db:	CNVD	id:	CNVD-2017-38306	Trust: 0.6
db:	BID	id:	102334	Trust: 0.4
db:	VULHUB	id:	VHN-85229	Trust: 0.1

sources: CNVD: CNVD-2017-38306 // VULHUB: VHN-85229 // BID: 102334 // JVNDB: JVNDB-2015-008067 // CNNVD: CNNVD-201711-1081 // NVD: CVE-2015-7268

REFERENCES

url:	https://www.blackhat.com/docs/eu-15/materials/eu-15-boteanu-bypassing-self-encrypting-drives-sed-in-enterprise-environments-wp.pdf	Trust: 3.4
url:	https://www.infoworld.com/article/3004913/encryption/self-encrypting-drives-are-hardly-any-better-than-software-based-encryption.html	Trust: 2.0
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-7268	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2015-7268	Trust: 0.8
url:	www.samsung.com	Trust: 0.3
url:	https://www.seagate.com	Trust: 0.3

sources: CNVD: CNVD-2017-38306 // VULHUB: VHN-85229 // BID: 102334 // JVNDB: JVNDB-2015-008067 // CNNVD: CNNVD-201711-1081 // NVD: CVE-2015-7268

CREDITS

Daniel Boteanu and Kevvie Fowler of KPMG.

Trust: 0.3

sources: BID: 102334

SOURCES

db:	CNVD	id:	CNVD-2017-38306
db:	VULHUB	id:	VHN-85229
db:	BID	id:	102334
db:	JVNDB	id:	JVNDB-2015-008067
db:	CNNVD	id:	CNNVD-201711-1081
db:	NVD	id:	CVE-2015-7268

LAST UPDATE DATE

2025-04-20T23:25:55.683000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-38306	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-85229	date:	2017-12-20T00:00:00
db:	BID	id:	102334	date:	2017-11-27T00:00:00
db:	JVNDB	id:	JVNDB-2015-008067	date:	2018-01-10T00:00:00
db:	CNNVD	id:	CNNVD-201711-1081	date:	2017-11-28T00:00:00
db:	NVD	id:	CVE-2015-7268	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-38306	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-85229	date:	2017-11-27T00:00:00
db:	BID	id:	102334	date:	2017-11-27T00:00:00
db:	JVNDB	id:	JVNDB-2015-008067	date:	2018-01-10T00:00:00
db:	CNNVD	id:	CNNVD-201711-1081	date:	2017-11-28T00:00:00
db:	NVD	id:	CVE-2015-7268	date:	2017-11-27T22:29:00.287