Vulnerability Details : CVE-2010-0223
Kingston DataTraveler BlackBox (DTBB), DataTraveler Secure Privacy Edition (DTSP), and DataTraveler Elite Privacy Edition (DTEP) USB flash drives do not prevent password replay attacks, which allows physically proximate attackers to access the cleartext drive contents by providing a key that was captured in a USB data stream at an earlier time.
Products affected by CVE-2010-0223
- cpe:2.3:h:kingston:datatraveler_blackbox:*:*:*:*:*:*:*:*
- cpe:2.3:h:kingston:datatraveler_secure:*:*:privacy:*:*:*:*:*
- cpe:2.3:h:kingston:datatraveler_elite:*:*:privacy:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2010-0223
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 24 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0223
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:P/I:N/A:N |
3.9
|
2.9
|
NIST |
CWE ids for CVE-2010-0223
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-0223
-
http://www.vupen.com/english/advisories/2010/0080
Webmail | OVH- OVH
-
https://www.ironkey.com/usb-flash-drive-flaw-exposed
404 Not Found
-
http://www.syss.de/fileadmin/ressources/040_veroeffentlichungen/dokumente/SySS_knackt_Kingston_USB-Stick.pdf
Fehler 404 - Seite nicht gefunden
-
http://www.kingston.com/driveupdate/
404 Not FoundVendor Advisory
-
http://www.syss.de/index.php?id=108&tx_ttnews[tt_news]=528&cHash=8d16fa63d9
Page Not Found
Jump to