4.7
CVE-2021-33078
- EPSS 0.1%
- Published 12.05.2022 17:15:09
- Last modified 05.05.2025 17:17:07
- Source secure@intel.com
- Teams watchlist Login
- Open Login
Race condition within a thread in firmware for some Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products may allow a privileged user to potentially enable denial of service via local access.
Data is provided by the National Vulnerability Database (NVD)
Intel ≫ Optane Ssd Dc P4800x Firmware Version < e2010600
Intel ≫ Optane Ssd Dc P4801x Firmware Version < e2010600
Intel ≫ Optane Ssd P5800x Firmware Version < l0310200
Intel ≫ Optane Memory H20 With Solid State Storage Firmware Version < pgf028k
Intel ≫ Optane Memory H10 With Solid State Storage Firmware Version < tgf061k
Intel ≫ Optane Ssd 905p Firmware Version < fw600
Intel ≫ Optane Ssd 900p Firmware Version < fw600
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.1% | 0.28 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 4.7 | 1 | 3.6 |
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 4.7 | 3.4 | 6.9 |
AV:L/AC:M/Au:N/C:N/I:N/A:C
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 4.7 | 1 | 3.6 |
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.