Vulnerabilities > CVE-2021-33077 - Unspecified vulnerability in Intel products

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

intel

NVD

Published: 2022-05-12

Updated: 2022-07-12

Summary

Insufficient control flow management in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Optane SSD DC P4800X Firmware E2010435 Intel Optane SSD DC P4801X Firmware - Intel Optane SSD P5800X Firmware - Intel Optane Memory H20 With Solid State Storage Firmware - Intel Optane Memory H10 With Solid State Storage Firmware - Intel Optane SSD 905P Firmware - Intel Optane SSD 905P Firmware E2010480 Intel Optane SSD 905P Firmware E2010650 Intel Optane SSD 900P Firmware - Intel Optane SSD 900P Firmware E2010480 Intel Optane SSD 900P Firmware E2010650	11
Hardware	Intel Intel Optane SSD DC P4800X - Intel Optane SSD DC P4801X - Intel Optane SSD P5800X - Intel Optane Memory H20 With Solid State Storage - Intel Optane Memory H10 With Solid State Storage - Intel Optane SSD 905P - Intel Optane SSD 900P -	7

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html