Details of VAR-201711-0015

ID

VAR-201711-0015

CVE

CVE-2015-7267

TITLE

Samsung 850 Pro/PM851 of SSD and Seagate ST500LT015/ST500LT025 of HDD Vulnerabilities that bypass security functions

Trust: 0.8

sources: JVNDB: JVNDB-2015-008068

DESCRIPTION

Samsung 850 Pro and PM851 solid-state drives and Seagate ST500LT015 and ST500LT025 hard disk drives, when in sleep mode and operating in Opal or eDrive mode on Lenovo ThinkPad T440s laptops with BIOS 2.32; ThinkPad W541 laptops with BIOS 2.21; Dell Latitude E6410 laptops with BIOS A16; or Latitude E6430 laptops with BIOS A16, allow physically proximate attackers to bypass self-encrypting drive (SED) protection by leveraging failure to detect when SATA drives are unplugged in Sleep Mode, aka a "Hot Plug attack.". Samsung 850 Pro/PM851 Solid state drives and Seagate ST500LT015/ST500LT025 There are vulnerabilities in hard disk drives that can bypass security functions.Information may be obtained. LenovoThinkPadT440slaptop is a laptop from Lenovo China. The DellLatitudeE6410laptop is a laptop from Dell. Samsung850Pro, etc. are all hard drives used in laptops. The Samsung850Pro is a hard disk manufactured by Samsung in South Korea. The Seagate ST500LT015 is a hard drive manufactured by Seagate. There are security holes in the Samsung850Pro, PM851 SSD, SeagateST500LT015 and ST500LT025 hard drives on several devices. An attacker could exploit this vulnerability to bypass self-encrypting hard disk (SED) protection. Samsung/Seagate Self-Encrypting Drive Protection are prone to a local security-bypass vulnerability. This may aid in further attacks. The following products are vulnerable: Seagate ST500LT015 and ST500LT025 Samsung 850 Pro and PM851. Samsung 850 Pro etc. The following products are affected: Lenovo ThinkPad T440s laptop using BIOS version 2.32; ThinkPad W541 laptop using BIOS version 2.21; Dell Latitude E6410 laptop using BIOS version A16; Latitude E6430 laptop using BIOS version A16

Trust: 2.52

sources: NVD: CVE-2015-7267 // JVNDB: JVNDB-2015-008068 // CNVD: CNVD-2017-38305 // BID: 102336 // VULHUB: VHN-85228

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-38305

AFFECTED PRODUCTS

vendor:	samsung	model:	pm851	scope:	eq	version:	-	Trust: 1.6
vendor:	samsung	model:	850 pro	scope:	eq	version:	-	Trust: 1.6
vendor:	samsung	model:	pm851	scope:	-	version:	-	Trust: 1.4
vendor:	seagate	model:	st500lt015	scope:	eq	version:	-	Trust: 1.0
vendor:	seagate	model:	st500lt025	scope:	eq	version:	-	Trust: 1.0
vendor:	seagate	model:	st500lt015	scope:	-	version:	-	Trust: 0.8
vendor:	seagate	model:	st500lt025	scope:	-	version:	-	Trust: 0.8
vendor:	samsung	model:	850 pro	scope:	-	version:	-	Trust: 0.8
vendor:	samsung	model:	pro	scope:	eq	version:	850	Trust: 0.6
vendor:	seagate	model:	technology st500lt015	scope:	-	version:	-	Trust: 0.6
vendor:	seagate	model:	technology st500lt025	scope:	-	version:	-	Trust: 0.6
vendor:	seagate	model:	st500lt025	scope:	eq	version:	0	Trust: 0.3
vendor:	seagate	model:	st500lt015	scope:	eq	version:	0	Trust: 0.3
vendor:	samsung	model:	pm851	scope:	eq	version:	0	Trust: 0.3
vendor:	samsung	model:	pro	scope:	eq	version:	8500	Trust: 0.3

sources: CNVD: CNVD-2017-38305 // BID: 102336 // JVNDB: JVNDB-2015-008068 // CNNVD: CNNVD-201711-1082 // NVD: CVE-2015-7267

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-7267
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-7267
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-38305
value:	LOW
Trust: 0.6
CNNVD:	CNNVD-201711-1082
value:	LOW
Trust: 0.6
VULHUB:	VHN-85228
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2015-7267
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-38305
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-85228
severity:	LOW
baseScore:	1.9
vectorString:	AV:L/AC:M/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.4
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2015-7267
baseSeverity:	MEDIUM
baseScore:	4.2
vectorString:	CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	PHYSICAL
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	0.5
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-38305 // VULHUB: VHN-85228 // JVNDB: JVNDB-2015-008068 // CNNVD: CNNVD-201711-1082 // NVD: CVE-2015-7267

PROBLEMTYPE DATA

problemtype:

CWE-254

Trust: 1.9

sources: VULHUB: VHN-85228 // JVNDB: JVNDB-2015-008068 // NVD: CVE-2015-7267

THREAT TYPE

local

Trust: 0.9

sources: BID: 102336 // CNNVD: CNNVD-201711-1082

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201711-1082

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-008068

PATCH

title:	Samsung 850 Pro	url:	http://www.samsung.com/semiconductor/minisite/jp/ssd/consumer/850pro/	Trust: 0.8
title:	Samsung PM851 Solid State Drive	url:	https://www.samsung.com/us/business/oem-solutions/pdfs/PM851-SSD-ProdOverview.pdf	Trust: 0.8
title:	Top Page	url:	https://www.seagate.com/jp/ja/	Trust: 0.8

sources: JVNDB: JVNDB-2015-008068

EXTERNAL IDS

db:	NVD	id:	CVE-2015-7267	Trust: 3.4
db:	JVNDB	id:	JVNDB-2015-008068	Trust: 0.8
db:	CNNVD	id:	CNNVD-201711-1082	Trust: 0.7
db:	CNVD	id:	CNVD-2017-38305	Trust: 0.6
db:	BID	id:	102336	Trust: 0.4
db:	VULHUB	id:	VHN-85228	Trust: 0.1

sources: CNVD: CNVD-2017-38305 // VULHUB: VHN-85228 // BID: 102336 // JVNDB: JVNDB-2015-008068 // CNNVD: CNNVD-201711-1082 // NVD: CVE-2015-7267

REFERENCES

url:	https://www.blackhat.com/docs/eu-15/materials/eu-15-boteanu-bypassing-self-encrypting-drives-sed-in-enterprise-environments-wp.pdf	Trust: 3.4
url:	https://www.infoworld.com/article/3004913/encryption/self-encrypting-drives-are-hardly-any-better-than-software-based-encryption.html	Trust: 2.0
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-7267	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2015-7267	Trust: 0.8
url:	www.samsung.com	Trust: 0.3
url:	https://www.seagate.com	Trust: 0.3

sources: CNVD: CNVD-2017-38305 // VULHUB: VHN-85228 // BID: 102336 // JVNDB: JVNDB-2015-008068 // CNNVD: CNNVD-201711-1082 // NVD: CVE-2015-7267

CREDITS

Daniel Boteanu and Kevvie Fowler of KPMG.

Trust: 0.3

sources: BID: 102336

SOURCES

db:	CNVD	id:	CNVD-2017-38305
db:	VULHUB	id:	VHN-85228
db:	BID	id:	102336
db:	JVNDB	id:	JVNDB-2015-008068
db:	CNNVD	id:	CNNVD-201711-1082
db:	NVD	id:	CVE-2015-7267

LAST UPDATE DATE

2025-04-20T23:32:03.075000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-38305	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-85228	date:	2017-12-20T00:00:00
db:	BID	id:	102336	date:	2017-11-27T00:00:00
db:	JVNDB	id:	JVNDB-2015-008068	date:	2018-01-10T00:00:00
db:	CNNVD	id:	CNNVD-201711-1082	date:	2017-11-28T00:00:00
db:	NVD	id:	CVE-2015-7267	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-38305	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-85228	date:	2017-11-27T00:00:00
db:	BID	id:	102336	date:	2017-11-27T00:00:00
db:	JVNDB	id:	JVNDB-2015-008068	date:	2018-01-10T00:00:00
db:	CNNVD	id:	CNNVD-201711-1082	date:	2017-11-28T00:00:00
db:	NVD	id:	CVE-2015-7267	date:	2017-11-27T22:29:00.237