Lucene search

IntelCVELIST:CVE-2021-33076

HistorySep 20, 2022 - 2:24 p.m.

CVE-2021-33076

2022-09-2014:24:46

intel

www.cve.org

intel

ssd

firmware

authentication

privilege escalation

physical access

CVSS3

5.3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

EPSS

0.001

Percentile

26.4%

JSON

Improper authentication in firmware for some Intel® SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

CNA Affected

[
  {
    "product": "Intel(R) SSD DC",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "See references"
      }
    ]
  }
]

References

www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf

CVSS3

5.3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

EPSS

0.001

Percentile

26.4%

JSON

Related for CVELIST:CVE-2021-33076