Published: 20/11/2018 Updated: 24/08/2020

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

CVSS v3 Base Score: 4.2 | Impact Score: 3.6 | Exploitability Score: 0.5

VMScore: 170

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

An issue exists on Samsung 840 EVO devices. Vendor-specific commands may allow access to the disk-encryption key.

Vulnerable Product	Search on Vulmon	Subscribe to Product
samsung 840_evo_firmware -

Collection of PowerShell network security scripts for system administrators.

netsec-ps-scripts Collection of PowerShell network security scripts for system administrators All scripts were tested in PowerShell 51 on Windows 10 unless specified Please let me know if you encounter any issues on other systems Please read the README file in each folder before running any scripts Scripts delete-remote-deployment-files Find and delete leftover deployment

PowerShell script to mitigate CVE-2018-12038. The script takes a list of PC as input, gets their BitLocker encryption type remotely, and outputs a report as a CSV file

remote-bitlocker-encryption-report This PowerShell script takes a list of PC as input, gets their BitLocker encryption type remotely, and outputs the list as a CSV file to help mitigate against CVE-2018-12038 Prevent CVE-2018-12038 vulnerability Description of CVE-2018-12038 from NIST : An issue was discovered on Samsung 840 EVO and 850 EVO devices (only in "ATA high&quo

CWE-522 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180028 http://www.securityfocus.com/bid/105841 http://www.kb.cert.org/vuls/id/395981 https://security.netapp.com/advisory/ntap-20181112-0001/https://nvd.nist.gov https://github.com/thom-s/netsec-ps-scripts https://www.kb.cert.org/vuls/id/395981

CVE-2018-12038

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect