Lucene search

[email protected]CVE-2021-33076

HistorySep 20, 2022 - 3:15 p.m.

CVE-2021-33076

2022-09-2015:15:10

CWE-287

[email protected]

web.nvd.nist.gov

cve-2021-33076

intel

ssd dc

firmware

authentication

privilege escalation

vulnerability

nvd

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

26.5%

JSON

Improper authentication in firmware for some Intel® SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Affected configurations

NVD

Node

intelssd_600pMatch-

AND

intelssd_600p_firmwareRange<122c

Node

intelssd_660pMatch-

AND

intelssd_660p_firmwareRange<005c

Node

intelssd_665pMatch-

AND

intelssd_665p_firmwareRange<002c

Node

intelssd_670pMatch-

AND

intelssd_670p_firmwareRange<003c

Node

intelssd_700pMatch-

AND

intelssd_700p_firmwareRange<005c

Node

intelssd_760pMatch-

AND

intelssd_760p_firmwareRange<006c

Node

intelssd_d3-s4510_m.2Match-

AND

intelssd_d3-s4510_m.2_firmwareRange<xc311132

Node

intelssd_dc_p4510_sffMatch-

AND

intelssd_dc_p4510_sff_firmwareRange<vdv10184

Node

intelssd_d3-s4610_m.2_firmwareRange<xc311132

AND

intelssd_d3-s4610_m.2Match-

Node

intelssd_dc_p4610_sff_firmwareRange<vdv10184

AND

intelssd_dc_p4610_sffMatch-

Node

intelssd_d5-p4326_firmwareRange<8dv1md58

AND

intelssd_d5-p4326Match-

Node

intelssd_d5-p5316_firmwareRange<acv10200

AND

intelssd_d5-p5316Match-

Node

intelssd_d7_p5510_firmwareRange<jcv10200

AND

intelssd_d7_p5510Match-

Node

intelssd_d7_p5600_firmwareMatch-

AND

intelssd_d7_p5600Match-

Node

intelssd_dc_d4512_firmwareRange<vpv1et0k

AND

intelssd_dc_d4512Match-

Node

intelssd_dc_p3100_firmwareRange<119d

AND

intelssd_dc_p3100Match-

Node

intelssd_dc_p4101_firmwareRange<009d

AND

intelssd_dc_p4101Match-

Node

intelssd_dc_p4500_firmwareRange<qdv101b1

AND

intelssd_dc_p4500Match-

Node

intelssd_dc_p4501_firmwareRange<qdv101b1

AND

intelssd_dc_p4501Match-

Node

intelssd_dc_p4510_edsff_firmwareRange<vev10284

AND

intelssd_dc_p4510_edsffMatch-

Node

intelssd_dc_p4510_sff_firmwareRange<vdv10184

AND

intelssd_dc_p4510_sffMatch-

Node

intelssd_dc_p4511_edsff_firmwareRange<vev10284

AND

intelssd_dc_p4511_edsffMatch-

Node

intelssd_dc_p4511_m.2_firmwareRange<vdc1lz37

AND

intelssd_dc_p4511_m.2Match-

Node

intelssd_dc_p4600_firmwareRange<qdv101b1

AND

intelssd_dc_p4600Match-

Node

intelssd_dc_p4608_firmwareRange<qdv101b1

AND

intelssd_dc_p4608Match-

Node

intelssd_dc_p4610_sff_firmwareRange<vdv10184

AND

intelssd_dc_p4610_sffMatch-

Node

intelssd_dc_s4500_firmwareRange<scv10150

AND

intelssd_dc_s4500Match-

Node

intelssd_dc_s4600_firmwareRange<scv10150

AND

intelssd_dc_s4600Match-

Node

intelssd_e_6000p_firmwareRange<122e

AND

intelssd_e_6000pMatch-

Node

intelssd_e_6100p_firmwareRange<006e

AND

intelssd_e_6100pMatch-

Node

intelssd_pro_6000p_firmwareRange<132p

AND

intelssd_pro_6000pMatch-

Node

intelssd_pro_7600p_firmwareRange<006p

AND

intelssd_pro_7600pMatch-

CPENameOperatorVersion
intel:ssd_600p_firmwareintel ssd 600p firmwarelt122c

CPE	Name	Operator	Version
intel:ssd_600p_firmware	intel ssd 600p firmware	lt	122c

CNA Affected

[
  {
    "product": "Intel(R) SSD DC",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "See references"
      }
    ]
  }
]

References

www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf

Social References

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

26.5%

JSON

Related for CVE-2021-33076

prion1 cvelist1 nvd1