Lucene search

[email protected]CVE-2021-33074

HistoryMay 12, 2022 - 5:15 p.m.

CVE-2021-33074

2022-05-1217:15:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2021-33074

intel

ssd

firmware

vulnerability

information disclosure

nvd

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

4.7 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

27.7%

JSON

Protection mechanism failure in firmware for some Intel® SSD, Intel® SSD DC and Intel® Optane™ SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access.

CPENameOperatorVersion
intel:optane_ssd_dc_p4800x_firmwareintel optane ssd dc p4800x firmwarelte2010600
intel:optane_ssd_dc_p4801x_firmwareintel optane ssd dc p4801x firmwarelte2010600
intel:optane_ssd_p5800x_firmwareintel optane ssd p5800x firmwareltl0310200
intel:optane_memory_h20_with_solid_state_storage_firmwareintel optane memory h20 with solid state storage firmwareltpgf028k
intel:optane_memory_h10_with_solid_state_storage_firmwareintel optane memory h10 with solid state storage firmwarelttgf061k
intel:optane_ssd_905p_firmwareintel optane ssd 905p firmwareltfw600
intel:optane_ssd_900p_firmwareintel optane ssd 900p firmwareltfw600

CPE	Name	Operator	Version
intel:optane_ssd_dc_p4800x_firmware	intel optane ssd dc p4800x firmware	lt	e2010600
intel:optane_ssd_dc_p4801x_firmware	intel optane ssd dc p4801x firmware	lt	e2010600
intel:optane_ssd_p5800x_firmware	intel optane ssd p5800x firmware	lt	l0310200
intel:optane_memory_h20_with_solid_state_storage_firmware	intel optane memory h20 with solid state storage firmware	lt	pgf028k
intel:optane_memory_h10_with_solid_state_storage_firmware	intel optane memory h10 with solid state storage firmware	lt	tgf061k
intel:optane_ssd_905p_firmware	intel optane ssd 905p firmware	lt	fw600
intel:optane_ssd_900p_firmware	intel optane ssd 900p firmware	lt	fw600

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html

www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf

Social References

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

4.7 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

27.7%

JSON

Related for CVE-2021-33074

prion1 cvelist1 intel1 hp1 threatpost1 f51