Lucene search

[email protected]CVE-2021-33083

HistoryMay 12, 2022 - 5:15 p.m.

CVE-2021-33083

2022-05-1217:15:00

CWE-287

[email protected]

web.nvd.nist.gov

cve-2021-33083

intel

ssd

firmware

authentication

info disclosure

nvd

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

4.8 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

12.0%

JSON

Improper authentication in firmware for some Intel® SSD, Intel® Optane™ SSD, Intel® Optane™ SSD DC and Intel® SSD DC Products may allow an privileged user to potentially enable information disclosure via local access.

CPENameOperatorVersion
intel:optane_ssd_dc_p4800x_firmwareintel optane ssd dc p4800x firmwarelte2010600
intel:optane_ssd_dc_p4801x_firmwareintel optane ssd dc p4801x firmwarelte2010600
intel:optane_ssd_p5800x_firmwareintel optane ssd p5800x firmwareltl0310200
intel:optane_memory_h20_with_solid_state_storage_firmwareintel optane memory h20 with solid state storage firmwareltpgf028k
intel:optane_memory_h10_with_solid_state_storage_firmwareintel optane memory h10 with solid state storage firmwarelttgf061k
intel:optane_ssd_905p_firmwareintel optane ssd 905p firmwareltfw600
intel:optane_ssd_900p_firmwareintel optane ssd 900p firmwareltfw600

CPE	Name	Operator	Version
intel:optane_ssd_dc_p4800x_firmware	intel optane ssd dc p4800x firmware	lt	e2010600
intel:optane_ssd_dc_p4801x_firmware	intel optane ssd dc p4801x firmware	lt	e2010600
intel:optane_ssd_p5800x_firmware	intel optane ssd p5800x firmware	lt	l0310200
intel:optane_memory_h20_with_solid_state_storage_firmware	intel optane memory h20 with solid state storage firmware	lt	pgf028k
intel:optane_memory_h10_with_solid_state_storage_firmware	intel optane memory h10 with solid state storage firmware	lt	tgf061k
intel:optane_ssd_905p_firmware	intel optane ssd 905p firmware	lt	fw600
intel:optane_ssd_900p_firmware	intel optane ssd 900p firmware	lt	fw600

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html

www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf

Social References

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

4.8 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

12.0%

JSON

Related for CVE-2021-33083

prion1 f51 threatpost1 hp1 intel1