HIGH✓ PATCH🇬🇧 English

CVE-2021-0084

CVSS 7.8v3.1pub. 2021-08-11upd. 2024-11-21

Improper input validation in the Intel(R) Ethernet Controllers X722 and 800 series Linux RMDA driver before version 1.3.19 may allow an authenticated user to potentially enable escalation of privilege via local access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Intel Ethernet Controller E810

    HW
    Intel
    wszystkie wersje
  • Intel Ethernet Controller E810 Firmware

    OS
    Intel
    < 1.4.11
  • Intel X722da2

    HW
    Intel
    wszystkie wersje
  • Intel X722da2 Firmware

    OS
    Intel
    < 1.3.19
  • Intel X722da4fh

    HW
    Intel
    wszystkie wersje
  • Intel X722da4fh Firmware

    OS
    Intel
    < 1.3.19
  • Intel X722da4g1p5

    HW
    Intel
    wszystkie wersje
  • Intel X722da4g1p5 Firmware

    OS
    Intel
    < 1.3.19
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2021-0002HIGH7.1ten sam produkt

Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11...

CVE-2022-41314MEDIUM6.7ten sam produkt

Uncontrolled search path in some Intel(R) Network Adapter installer software may allow an authenticated user t...

CVE-2022-28709MEDIUM4.4ten sam produkt

Improper access control in the firmware for some Intel(R) E810 Ethernet Controllers before version 1.6.1.9 may...

CVE-2021-33128MEDIUM4.4ten sam produkt

Improper access control in the firmware for some Intel(R) E810 Ethernet Controllers before version 1.6.0.6 may...

CVE-2021-0004MEDIUM4.4ten sam produkt

Improper buffer restrictions in the firmware of Intel(R) Ethernet Adapters 800 Series Controllers and associat...