CVE-2021-33077

EPSS 0.18%
Published 12.05.2022 17:15:09
Last modified 05.05.2025 17:17:06
Source secure@intel.com
Teams watchlist Login
Open Login

Insufficient control flow management in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Affected products Warnungen 0 Metrics 4 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Intel ≫ Optane Ssd Dc P4800x Firmware Version < e2010600

Intel ≫ Optane Ssd Dc P4800x Version-

Intel ≫ Optane Ssd Dc P4801x Firmware Version < e2010600

Intel ≫ Optane Ssd Dc P4801x Version-

Intel ≫ Optane Ssd P5800x Firmware Version < l0310200

Intel ≫ Optane Ssd P5800x Version-

Intel ≫ Optane Memory H20 With Solid State Storage Firmware Version < pgf028k

Intel ≫ Optane Memory H20 With Solid State Storage Version-

Intel ≫ Optane Memory H10 With Solid State Storage Firmware Version < tgf061k

Intel ≫ Optane Memory H10 With Solid State Storage Version-

Intel ≫ Optane Ssd 905p Firmware Version < fw600

Intel ≫ Optane Ssd 905p Version-

Intel ≫ Optane Ssd 900p Firmware Version < fw600

Intel ≫ Optane Ssd 900p Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.18%	0.401

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	0.9	5.9	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P
134c704f-9b21-4f2e-91b3-4a467353bcc0	6.8	0.9	5.9	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2021-33077

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-33077

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-33077

EUVD