Crucial MX500 SATA SSD Firmware M3CR046 Vulnerable to Buffer Overflow Attacks

Posted on 2024-09-15 Edited on 2025-06-24

Quick Report

One of the popular and best selling SATA SSDs from Crucial aka Micron is affected by buffer overflow attack for firmware version M3CR046. According to CVE-2024-42642 report, a specially crafted ATA packets from host to drive controller can lead to buffer overflow and memory corruption issues.

At the moment, Crucial has not issued new firmware update and it is unknown whether older firmware is affected by this vulnerability. You can check for firmware updates at official Crucial MX500
You can check for other crucial SSDs at Crucial SSD Support

Source(s)

TPU
CVE-2024-42642 buffer overflow exploit in MX500