CVE-2021-33083

CVE Database · CVE-2021-33083

CVE-2021-33083

· MEDIUMModified

CVSS v3.1

4.4

EPSS

0.25%

Published

May 12, 2022

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Improper authentication in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel(R) SSD DC Products may allow an privileged user to potentially enable information disclosure via local access.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Weaknesses (CWE)

CWE-287

Affected Products (14)

intel · optane_ssd_dc_p4800x_firmware (up to e2010600)vulnerable

intel · optane_ssd_dc_p4800x

intel · optane_ssd_dc_p4801x_firmware (up to e2010600)vulnerable

intel · optane_ssd_dc_p4801x

intel · optane_ssd_p5800x_firmware (up to l0310200)vulnerable

intel · optane_ssd_p5800x

intel · optane_memory_h20_with_solid_state_storage_firmware (up to pgf028k)vulnerable

intel · optane_memory_h20_with_solid_state_storage

intel · optane_memory_h10_with_solid_state_storage_firmware (up to tgf061k)vulnerable

intel · optane_memory_h10_with_solid_state_storage

References (4)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html

MitigationVendor Advisory

https://www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf

Broken Link

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html

MitigationVendor Advisory

https://www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf

Broken Link

KEV Catalog EPSS Scores Vendors All CVEs