Medium severity6.8NVD Advisory· Published Nov 18, 2020· Updated Jun 5, 2026

CVE-2020-13799

Description

Western Digital has identified a security vulnerability in the Replay Protected Memory Block (RPMB) protocol as specified in multiple standards for storage device interfaces, including all versions of eMMC, UFS, and NVMe. The RPMB protocol is specified by industry standards bodies and is implemented by storage devices from multiple vendors to assist host systems in securing trusted firmware. Several scenarios have been identified in which the RPMB state may be affected by an attacker without the knowledge of the trusted component that uses the RPMB feature.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Arm/Op Tee
cpe:2.3:o:trustedfirmware:op-tee:*:*:*:*:*:*:*:*
Range: <=3.11.0
Westerndigital/Inand Cl Em132 Firmware
cpe:2.3:o:westerndigital:inand_cl_em132_firmware:*:*:*:*:*:*:*:*
Range: <=2020-06-03
Westerndigital/Inand Ix Em132 Firmware
cpe:2.3:o:westerndigital:inand_ix_em132_firmware:*:*:*:*:*:*:*:*
Range: <=2020-06-03
Westerndigital/Inand Ix Em132 Xi Firmware
cpe:2.3:o:westerndigital:inand_ix_em132_xi_firmware:*:*:*:*:*:*:*:*
Range: <=2020-06-03
Western Digital/Replay Protected Memory Block (RPMB) protocoldescription
Westerndigital/RPMB Protocolllm-create

Patches

Vulnerability mechanics

References

www.kb.cert.org/vuls/id/231329nvdThird Party AdvisoryUS Government Resource
www.westerndigital.com/support/productsecurity/wdc-20008-replay-attack-vulnerabilities-rpmb-protocol-applicationsnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.442
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000