Intel® Thunderbolt™ DCH Driver for Windows Advisory

Summary:

A potential security vulnerability in some Intel® Thunderbolt™ Declarative Componentized Hardware (DCH) Drivers for Windows may allow denial of service. Intel is releasing software updates to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2021-0110

Description: Improper access control in some Intel® Thunderbolt™ Windows DCH Drivers before version 1.41.1054.0 may allow unauthenticated user to potentially enable denial of service via local access.

CVSS Base Score: 6.2 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

Intel® Thunderbolt™ 3 and 4 Windows DCH Drivers before version 1.41.1054.0 for:

· Intel® JHL6540 & JHL6340 & JHL6240

· Intel® JHL7540 & JHL7440 & JHL7340

· Intel® JHL8540 & JHL8440

· Intel® 10th Gen & Intel® 11th Gen Core Processors with Thunderbolt™ Technology

Recommendations:

Intel recommends updating Intel® Thunderbolt™ DCH Drivers for Windows to version 1.41.1094 or later.

Updates are available for download at this location:

<https://www.intel.com/content/www/us/en/search.html?ws=recent#q=596793&gt;

Acknowledgements:

This issue was found internally by Intel.****

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.