Vulnerabilities > CVE-2021-33149 - Information Exposure Through Discrepancy vulnerability in Intel products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

intel

CWE-203

NVD

Published: 2022-05-12

Updated: 2022-10-26

Summary

Observable behavioral discrepancy in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Core Processors Firmware - Intel Pentium Processors Firmware - Intel Celeron Processors Firmware - Intel Xeon Processors Firmware - Intel Itanium Processors Firmware - Intel Atom Processors Firmware - Intel Xeon PHI Processors Firmware - Intel Quark SOC Firmware -	8
Hardware	Intel Intel Core Processors - Intel Pentium Processors - Intel Celeron Processors - Intel Xeon Processors - Intel Itanium Processors - Intel Atom Processors - Intel Xeon PHI Processors - Intel Quark SOC -	8

Common Weakness Enumeration (CWE)

CWE-203 - Information Exposure Through Discrepancy

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References