CVE-2021-46390 - Vulnerability Details

Vendors	Products
Lexar	F35 F35 Firmware

Link	Providers
https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-fcqg-mq6w-h3fh
https://www.amazon.in/Lexar-LJDF35-128BNL-JumpDrive-Fingerprint-Silver/dp/B07GSMSL28/ref=sr_1_2?crid=37UZOWDJDLMIP&keywords=Lexar_F35&qid=1641532007&s=computers&sprefix=lexar_f3%2Ccomputers%2C311&sr=1-2
https://www.ebay.com/itm/265316509212?hash=item3dc618a61c:g:YO0AAOSwoPJeNNQN
https://www.lexar.com/en/product/lexar-jumpdrive-fingerprint-f35-usb-3-0-flash-drive/

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "An access control issue in the authentication module of Lexar_F35 v1.0.34 allows attackers to access sensitive data and cause a Denial of Service (DoS). An attacker without access to securely protected data on a secure USB flash drive can bypass user authentication without having any information related to the password of the registered user. The secure USB flash drive transmits the password entered by the user to the authentication module in the drive after the user registers a password, and then the input password is compared with the registered password stored in the authentication module. Subsequently, the module returns the comparison result for the authentication decision. Therefore, an attacker can bypass password authentication by analyzing the functions that return the password verification or comparison results and manipulate the authentication result values. Accordingly, even if attackers enter an incorrect password, they can be authenticated as a legitimate user and can therefore exploit functions of the secure USB flash drive by manipulating the authentication result values."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-03-21T19:59:16", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.lexar.com/en/product/lexar-jumpdrive-fingerprint-f35-usb-3-0-flash-drive/"}, {"tags": ["x_refsource_MISC"], "url": "https://www.amazon.in/Lexar-LJDF35-128BNL-JumpDrive-Fingerprint-Silver/dp/B07GSMSL28/ref=sr_1_2?crid=37UZOWDJDLMIP&keywords=Lexar_F35&qid=1641532007&s=computers&sprefix=lexar_f3%2Ccomputers%2C311&sr=1-2"}, {"tags": ["x_refsource_MISC"], "url": "https://www.ebay.com/itm/265316509212?hash=item3dc618a61c:g:YO0AAOSwoPJeNNQN"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-fcqg-mq6w-h3fh"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2021-46390", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An access control issue in the authentication module of Lexar_F35 v1.0.34 allows attackers to access sensitive data and cause a Denial of Service (DoS). An attacker without access to securely protected data on a secure USB flash drive can bypass user authentication without having any information related to the password of the registered user. The secure USB flash drive transmits the password entered by the user to the authentication module in the drive after the user registers a password, and then the input password is compared with the registered password stored in the authentication module. Subsequently, the module returns the comparison result for the authentication decision. Therefore, an attacker can bypass password authentication by analyzing the functions that return the password verification or comparison results and manipulate the authentication result values. Accordingly, even if attackers enter an incorrect password, they can be authenticated as a legitimate user and can therefore exploit functions of the secure USB flash drive by manipulating the authentication result values."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.lexar.com/en/product/lexar-jumpdrive-fingerprint-f35-usb-3-0-flash-drive/", "refsource": "MISC", "url": "https://www.lexar.com/en/product/lexar-jumpdrive-fingerprint-f35-usb-3-0-flash-drive/"}, {"name": "https://www.amazon.in/Lexar-LJDF35-128BNL-JumpDrive-Fingerprint-Silver/dp/B07GSMSL28/ref=sr_1_2?crid=37UZOWDJDLMIP&keywords=Lexar_F35&qid=1641532007&s=computers&sprefix=lexar_f3%2Ccomputers%2C311&sr=1-2", "refsource": "MISC", "url": "https://www.amazon.in/Lexar-LJDF35-128BNL-JumpDrive-Fingerprint-Silver/dp/B07GSMSL28/ref=sr_1_2?crid=37UZOWDJDLMIP&keywords=Lexar_F35&qid=1641532007&s=computers&sprefix=lexar_f3%2Ccomputers%2C311&sr=1-2"}, {"name": "https://www.ebay.com/itm/265316509212?hash=item3dc618a61c:g:YO0AAOSwoPJeNNQN", "refsource": "MISC", "url": "https://www.ebay.com/itm/265316509212?hash=item3dc618a61c:g:YO0AAOSwoPJeNNQN"}, {"name": "https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-fcqg-mq6w-h3fh", "refsource": "MISC", "url": "https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-fcqg-mq6w-h3fh"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:02:11.628Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.lexar.com/en/product/lexar-jumpdrive-fingerprint-f35-usb-3-0-flash-drive/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.amazon.in/Lexar-LJDF35-128BNL-JumpDrive-Fingerprint-Silver/dp/B07GSMSL28/ref=sr_1_2?crid=37UZOWDJDLMIP&keywords=Lexar_F35&qid=1641532007&s=computers&sprefix=lexar_f3%2Ccomputers%2C311&sr=1-2"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.ebay.com/itm/265316509212?hash=item3dc618a61c:g:YO0AAOSwoPJeNNQN"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-fcqg-mq6w-h3fh"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2021-46390", "datePublished": "2022-03-21T19:59:17", "dateReserved": "2022-01-18T00:00:00", "dateUpdated": "2024-08-04T05:02:11.628Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:lexar:f35_firmware:1.0.34.0:*:*:*:*:windows:*:*", "matchCriteriaId": "845E7EC7-C4BE-4C8B-87C2-613BDAD5506B", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:lexar:f35:-:*:*:*:*:*:*:*", "matchCriteriaId": "E08C02FD-0F86-485E-A973-020F36EC713E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "An access control issue in the authentication module of Lexar_F35 v1.0.34 allows attackers to access sensitive data and cause a Denial of Service (DoS). An attacker without access to securely protected data on a secure USB flash drive can bypass user authentication without having any information related to the password of the registered user. The secure USB flash drive transmits the password entered by the user to the authentication module in the drive after the user registers a password, and then the input password is compared with the registered password stored in the authentication module. Subsequently, the module returns the comparison result for the authentication decision. Therefore, an attacker can bypass password authentication by analyzing the functions that return the password verification or comparison results and manipulate the authentication result values. Accordingly, even if attackers enter an incorrect password, they can be authenticated as a legitimate user and can therefore exploit functions of the secure USB flash drive by manipulating the authentication result values."}, {"lang": "es", "value": "Un problema de control de acceso en el m\u00f3dulo de autenticaci\u00f3n de Lexar_F35 versi\u00f3n v1.0.34, permite a atacantes acceder a datos confidenciales y causar una Denegaci\u00f3n de Servicio (DoS). Un atacante sin acceso a los datos protegidos de forma segura en una unidad flash USB segura puede omitir la autenticaci\u00f3n del usuario sin tener ninguna informaci\u00f3n relacionada con la contrase\u00f1a del usuario registrado. La unidad flash USB segura transmite la contrase\u00f1a introducida por el usuario al m\u00f3dulo de autenticaci\u00f3n de la unidad despu\u00e9s de que el usuario registre una contrase\u00f1a, y luego la contrase\u00f1a introducida es comparada con la contrase\u00f1a registrada almacenada en el m\u00f3dulo de autenticaci\u00f3n. Posteriormente, el m\u00f3dulo devuelve el resultado de la comparaci\u00f3n para la decisi\u00f3n de autenticaci\u00f3n. Por lo tanto, un atacante puede omitir la autenticaci\u00f3n de la contrase\u00f1a al analizar las funciones que devuelven los resultados de verificaci\u00f3n o comparaci\u00f3n de la contrase\u00f1a y manipular los valores de los resultados de la autenticaci\u00f3n. En consecuencia, aunque los atacantes introduzcan una contrase\u00f1a incorrecta, pueden ser autenticados como un usuario leg\u00edtimo y, por lo tanto, pueden explotar las funciones de la unidad flash USB segura al manipular los valores de los resultados de la autenticaci\u00f3n"}], "id": "CVE-2021-46390", "lastModified": "2024-11-21T06:34:01.610", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-03-21T20:15:13.610", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-fcqg-mq6w-h3fh"}, {"source": "cve@mitre.org", "tags": ["Product", "Third Party Advisory"], "url": "https://www.amazon.in/Lexar-LJDF35-128BNL-JumpDrive-Fingerprint-Silver/dp/B07GSMSL28/ref=sr_1_2?crid=37UZOWDJDLMIP&keywords=Lexar_F35&qid=1641532007&s=computers&sprefix=lexar_f3%2Ccomputers%2C311&sr=1-2"}, {"source": "cve@mitre.org", "tags": ["Product", "Third Party Advisory"], "url": "https://www.ebay.com/itm/265316509212?hash=item3dc618a61c:g:YO0AAOSwoPJeNNQN"}, {"source": "cve@mitre.org", "tags": ["Product", "Vendor Advisory"], "url": "https://www.lexar.com/en/product/lexar-jumpdrive-fingerprint-f35-usb-3-0-flash-drive/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-fcqg-mq6w-h3fh"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product", "Third Party Advisory"], "url": "https://www.amazon.in/Lexar-LJDF35-128BNL-JumpDrive-Fingerprint-Silver/dp/B07GSMSL28/ref=sr_1_2?crid=37UZOWDJDLMIP&keywords=Lexar_F35&qid=1641532007&s=computers&sprefix=lexar_f3%2Ccomputers%2C311&sr=1-2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product", "Third Party Advisory"], "url": "https://www.ebay.com/itm/265316509212?hash=item3dc618a61c:g:YO0AAOSwoPJeNNQN"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product", "Vendor Advisory"], "url": "https://www.lexar.com/en/product/lexar-jumpdrive-fingerprint-f35-usb-3-0-flash-drive/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object