CVE-2019-10636 Information

Description

Marvell SSD Controller (88SS1074 88SS1079 88SS1080 88SS1093 88SS1092 88SS1095 88SS9174 88SS9175 88SS9187 88SS9188 88SS9189 88SS9190 88SS1085 88SS1087 88SS1090 88SS1100 88SS1084 88SS1088 & 88SS1098) devices allow reprogramming flash memory to bypass the secure boot protection mechanism.

CVSS Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Reference

https://www.marvell.com/documents/x9g4hrszt5ls3udbe1eo/

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

HIGH

Base Score

NONE

Base Severity

4.6