Skip to content

Commit a70db17

Browse files
nickhummelnickhummel
authored
Merge pull request #80 from yonggap-bae/main
Add SFR for SK hynix PEB110
2 parents 15ae6b2 + 988e283 commit a70db17

2 files changed

Lines changed: 45 additions & 0 deletions

File tree

Reports/SK_hynix/2025/PEB110/SK_hynix-PEB110-61082A50-Security-Evaluation.json

Lines changed: 44 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,44 @@
1+
{
2+
"review_framework_version": "1.1",
3+
"device": {
4+
"vendor": "SK hynix",
5+
"product": "PEB110 Enterprise SSD",
6+
"category": "storage",
7+
"repo_tag": "",
8+
"fw_version": "61082A50",
9+
"fw_hash_sha2_384": "b460c323f18e98a9b948906a7e118df0cbb17cfcbc036c830151e16fa9ea9f524ae3db9bbc9fc990cff7aaaa76958249",
10+
"fw_hash_sha2_512": "55e5cf70ccf1b111560070ae54a68ff5f8625ca73bb4a38c2ed5ef82baa33de51d2ee145945ae5350adef29b6638808818880f27da7172b141359b3fa93a3653",
11+
"manifest": [
12+
{
13+
"file_name": "./PEB110.zip",
14+
"file_hash": "603E04AEDA9ED24C41390499A7102F557C410CEF1E7790B027961D0750B289C5089347E5D83BDFEDE184F921E34A16419090B32B51413D16279390CDFEDB3BA7"
15+
}
16+
]
17+
},
18+
"audit": {
19+
"srp": "Keysight Riscure",
20+
"methodology": "whitebox",
21+
"completion_date": "2025-09-12",
22+
"report_version": "1.0",
23+
"scope_number": 1,
24+
"cvss_version": "3.1",
25+
"issues": [
26+
{
27+
"title": "Integer underflow leads to OOB Write",
28+
"cvss_score": "3.7",
29+
"cvss_vector": "/AV:P/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
30+
"cwe": "CWE-787",
31+
"description": "This is a low risk finding. There is no immediate consequence without physical access to the target device.",
32+
"cve": null
33+
},
34+
{
35+
"title": "Static stack guard value at Thread Implementation",
36+
"cvss_score": "2.3",
37+
"cvss_vector": "/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
38+
"cwe": "CWE-119",
39+
"description": "This is a low risk finding; however, there is no immediate consequence.",
40+
"cve": null
41+
}
42+
]
43+
}
44+
}

Reports/SK_hynix/2025/PEB110/SK_hynix-PEB110-61082A50-Security-Evaluation_signed.jws

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+
eyJhbGciOiJFUzUxMiIsImtpZCI6IktleXNpZ2h0IiwidHlwIjoiSldUIn0.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.AdXUBtACncMAZ9jYz_9_YTSipGXfMJ7izkPnyoBIC6FrDTNzCuDc7-Wg1kWvT6qLiPkAf_iakkwBKSLyVI7rQB8rACbPDqTFrtFp5ypE7lBfLTV4hmSwy7DXicDdUjLwjBHmFseAXbPd1y6xZqL6H8moFAc5HR4b5xbVq767O9heYnpl

0 commit comments

Comments
 (0)