westerndigital

ssd_dashboard

2 known vulnerabilities · sorted by CVSS score

CVE-2019-13466

Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 have Incorrect Access Control. The “generate reports” archive is protected with a hard-coded password. An application update that addresses the protection of archive encryption is available.

sandisk / ssd_dashboard+1

Network

Published Sep 30, 2019

CVE-2019-13467

MEDIUM5.9

Description: Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources from the Dashboard web service. This vulnerability may allow an attacker to substitute downloaded resources with arbitrary files.

sandisk / ssd_dashboard+1

Network

Published Sep 30, 2019