CVE-2021-33117

EPSS 0.13%
Published 12.05.2022 17:15:09
Last modified 05.05.2025 17:17:13
Source secure@intel.com
Teams watchlist Login
Open Login

Improper access control for some 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7, may allow a local attacker to potentially enable information disclosure via local access.

Affected products Warnungen 0 Metrics 4 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Intel ≫ Bios Version < mr7

   Intel ≫ Xeon Gold 5315y Version-
   Intel ≫ Xeon Gold 5317 Version-
   Intel ≫ Xeon Gold 5318h Version-
   Intel ≫ Xeon Gold 5318n Version-
   Intel ≫ Xeon Gold 5318s Version-
   Intel ≫ Xeon Gold 5318y Version-
   Intel ≫ Xeon Gold 5320 Version-
   Intel ≫ Xeon Gold 5320h Version-
   Intel ≫ Xeon Gold 5320t Version-
   Intel ≫ Xeon Gold 6312u Version-
   Intel ≫ Xeon Gold 6314u Version-
   Intel ≫ Xeon Gold 6326 Version-
   Intel ≫ Xeon Gold 6328h Version-
   Intel ≫ Xeon Gold 6328hl Version-
   Intel ≫ Xeon Gold 6330 Version-
   Intel ≫ Xeon Gold 6330h Version-
   Intel ≫ Xeon Gold 6330n Version-
   Intel ≫ Xeon Gold 6334 Version-
   Intel ≫ Xeon Gold 6336y Version-
   Intel ≫ Xeon Gold 6338 Version-
   Intel ≫ Xeon Gold 6338n Version-
   Intel ≫ Xeon Gold 6338t Version-
   Intel ≫ Xeon Gold 6342 Version-
   Intel ≫ Xeon Gold 6346 Version-
   Intel ≫ Xeon Gold 6348 Version-
   Intel ≫ Xeon Gold 6348h Version-
   Intel ≫ Xeon Gold 6354 Version-
   Intel ≫ Xeon Platinum 8351n Version-
   Intel ≫ Xeon Platinum 8352m Version-
   Intel ≫ Xeon Platinum 8352s Version-
   Intel ≫ Xeon Platinum 8352v Version-
   Intel ≫ Xeon Platinum 8352y Version-
   Intel ≫ Xeon Platinum 8353h Version-
   Intel ≫ Xeon Platinum 8354h Version-
   Intel ≫ Xeon Platinum 8356h Version-
   Intel ≫ Xeon Platinum 8358 Version-
   Intel ≫ Xeon Platinum 8358p Version-
   Intel ≫ Xeon Platinum 8360h Version-
   Intel ≫ Xeon Platinum 8360hl Version-
   Intel ≫ Xeon Platinum 8360y Version-
   Intel ≫ Xeon Platinum 8362 Version-
   Intel ≫ Xeon Platinum 8368 Version-
   Intel ≫ Xeon Platinum 8368q Version-
   Intel ≫ Xeon Platinum 8376h Version-
   Intel ≫ Xeon Platinum 8376hl Version-
   Intel ≫ Xeon Platinum 8380 Version-
   Intel ≫ Xeon Platinum 8380h Version-
   Intel ≫ Xeon Platinum 8380hl Version-
   Intel ≫ Xeon Silver 4309y Version-
   Intel ≫ Xeon Silver 4310 Version-
   Intel ≫ Xeon Silver 4310t Version-
   Intel ≫ Xeon Silver 4314 Version-
   Intel ≫ Xeon Silver 4316 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.13%	0.338

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

https://security.netapp.com/advisory/ntap-20220818-0001/

Third Party Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00586.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-33117

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-33117

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-33117

EUVD