Lucene search

F5F5:K56213806

HistoryMay 23, 2022 - 12:00 a.m.

K56213806 : Intel SSD INTEL-SA-00563 vulnerabilities

2022-05-2300:00:00

my.f5.com

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

5.5 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

28.1%

JSON

Security Advisory Description

CVE-2021-33069

Improper resource shutdown or release in firmware for some Intel® SSD, Intel® SSD DC, Intel® Optane™ SSD and Intel® Optane™ SSD DC may allow a privileged user to potentially enable denial of service via local access.

CVE-2021-33074

Protection mechanism failure in firmware for some Intel® SSD, Intel® SSD DC and Intel® Optane™ SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access.

CVE-2021-33075

Race condition in firmware for some Intel® Optane™ SSD, Intel® Optane™ SSD DC and Intel® SSD DC Products may allow a privileged user to potentially enable denial of service via local access.

CVE-2021-33077

Insufficient control flow management in firmware for some Intel® SSD, Intel® Optane™ SSD and Intel® SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

CVE-2021-33078

Race condition within a thread in firmware for some Intel® Optane™ SSD and Intel® SSD DC Products may allow a privileged user to potentially enable denial of service via local access.

CVE-2021-33080

Exposure of sensitive system information due to uncleared debug information in firmware for some Intel® SSD DC, Intel® Optane™ SSD and Intel® Optane™ SSD DC Products may allow an unauthenticated user to potentially enable information disclosure or escalation of privilege via physical access.

CVE-2021-33082

Sensitive information in resource not removed before reuse in firmware for some Intel® SSD and Intel® Optane™ SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access.

CVE-2021-33083

Improper authentication in firmware for some Intel® SSD, Intel® Optane™ SSD, Intel® Optane™ SSD DC and Intel® SSD DC Products may allow an privileged user to potentially enable information disclosure via local access.

Impact

There is no impact; F5 products are not affected by this vulnerability.

CPENameOperatorVersion
f5 ssl orchestratoreq14.1.0
f5 ssl orchestratoreq14.1.2
f5 ssl orchestratoreq14.1.4
f5 ssl orchestratoreq15.1.0
f5 ssl orchestratoreq15.1.1
f5 ssl orchestratoreq16.1.0
f5 ssl orchestratoreq16.1.1
f5 ssl orchestratoreq17.0.0
big-ip afmeq13.1.0
big-ip afmeq13.1.1

Name	Operator	Version
f5 ssl orchestrator	eq	14.1.0
f5 ssl orchestrator	eq	14.1.2
f5 ssl orchestrator	eq	14.1.4
f5 ssl orchestrator	eq	15.1.0
f5 ssl orchestrator	eq	15.1.1
f5 ssl orchestrator	eq	16.1.0
f5 ssl orchestrator	eq	16.1.1
f5 ssl orchestrator	eq	17.0.0
big-ip afm	eq	13.1.0
big-ip afm	eq	13.1.1

Rows per page:

1-10 of 2201

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

5.5 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

28.1%

JSON

Related for F5:K56213806