Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00561
HistoryFeb 08, 2022 - 12:00 a.m.

2021.2 IPU - Intel® Processor Shared Resource Advisory

2022-02-0800:00:00
Intel Security Center
www.intel.com
7
JSON

Summary:

A potential security vulnerability in some Intel® Processors may allow information disclosure.** **Intel is releasing firmware updates to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2021-0145

Description: Improper initialization of shared resources in some Intel® Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Base Score: 6.5 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N****

Affected Products:

A list of impacted products can be found here.

Recommendations:

Intel recommends that users of affected Intel® Processors update to the latest version firmware provided by the system manufacturer that addresses these issues.

Intel has released microcode updates for the affected Intel® Processors that are currently supported on the public github repository. Please see details below on access to the microcode:

Public Github: <https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files&gt;

Acknowledgements:

The issue was found internally by Intel employees. Intel would like to thank Joseph Nuzman for reporting the issue.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

veracode 1
prion 1
debiancve 1
cve 1
redhatcve 1
ubuntucve 1
almalinux 1
citrix 1
rocky 1
nessus 9
openvas 8
mageia 1
suse 1
cloudfoundry 1
osv 2
ubuntu 2
ibm 2
hp 1
veracode
veracode
Information Disclosure
2022-02-25 22:03:58
prion
prion
Design/Logic Flaw
2022-02-09 23:15:00
debiancve
debiancve
CVE-2021-0145
2022-02-09 23:15:00
cve
cve
CVE-2021-0145
2022-02-09 23:15:00
redhatcve
redhatcve
CVE-2021-0145
2022-02-08 19:07:53
ubuntucve
ubuntucve
CVE-2021-0145
2022-02-09 00:00:00
almalinux
almalinux
microcode_ctl bug fix and enhancement update
2022-04-26 13:49:11
citrix
citrix
Security Advisory for Citrix Hypervisor
2022-02-07 14:36:10
rocky
rocky
microcode_ctl bug fix and enhancement update
2022-04-26 13:49:11
nessus
nessus
SUSE SLES12 Security Update : ucode-intel (SUSE-SU-2022:0575-1)
2022-02-26 00:00:00
SUSE SLES15 Security Update : ucode-intel (SUSE-SU-2022:0541-1)
2022-02-22 00:00:00
openSUSE 15 Security Update : ucode-intel (openSUSE-SU-2022:0574-1)
2022-02-26 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0064)
2022-02-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0541-1)
2022-02-22 00:00:00
openSUSE: Security Advisory for ucode-intel (openSUSE-SU-2022:0574-1)
2022-02-26 00:00:00
mageia
mageia
Updated microcode packages fix security vulnerabilities
2022-02-15 23:50:31
suse
suse
Security update for ucode-intel (important)
2022-02-25 00:00:00
cloudfoundry
cloudfoundry
USN-5486-1: Intel Microcode vulnerabilities | Cloud Foundry
2022-06-30 00:00:00
osv
osv
intel-microcode vulnerabilities
2022-06-20 04:21:50
Intel Microcode vulnerabilities
2022-07-28 05:31:23
ubuntu
ubuntu
Intel Microcode vulnerabilities
2022-06-20 00:00:00
Intel Microcode vulnerabilities
2022-07-28 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in Intel Processors affect IBM Cloud Pak System
2022-08-16 18:41:40
Security Bulletin: IBM QRadar SIEM Appliances could be vulnerable to multiple Intel CVEs
2022-12-05 19:13:46
hp
hp
Intel 2021.2 IPU - BIOS Firmware February 2022 Security Updates
2022-02-08 00:00:00
JSON
Related for INTEL:INTEL-SA-00561
veracode1prion1debiancve1cve1redhatcve1ubuntucve1almalinux1citrix1rocky1nessus9openvas8mageia1suse1cloudfoundry1osv2ubuntu2ibm2hp1