Vulnerabilities > Netapp > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-02-09 CVE-2021-0060 Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions SPS_E5_04.01.04.516.0, SPS_E5_04.04.04.033.0, SPS_E5_04.04.03.281.0, SPS_E5_03.01.03.116.0, SPS_E3_05.01.04.309.0, SPS_02.04.00.101.0, SPS_SoC-A_05.00.03.114.0, SPS_SoC-X_04.00.04.326.0, SPS_SoC-X_03.00.03.117.0, IGN_E5_91.00.00.167.0, SPS_PHI_03.01.03.078.0 may allow an authenticated user to potentially enable escalation of privilege via physical access.
low complexity
intel netapp
6.6
2022-02-09 CVE-2021-0092 Resource Exhaustion vulnerability in multiple products
Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.
local
low complexity
intel netapp CWE-400
4.4
2022-02-09 CVE-2021-0093 Incorrect Default Permissions vulnerability in multiple products
Incorrect default permissions in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.
local
low complexity
intel netapp CWE-276
4.4
2022-02-09 CVE-2021-0103 Insufficient control flow management in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
local
low complexity
intel netapp
6.7
2022-02-09 CVE-2021-0107 Unchecked Return Value vulnerability in multiple products
Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel netapp CWE-252
6.7
2022-02-09 CVE-2021-0111 NULL Pointer Dereference vulnerability in multiple products
NULL pointer dereference in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
local
low complexity
intel netapp CWE-476
6.7
2022-02-09 CVE-2021-0115 Classic Buffer Overflow vulnerability in multiple products
Buffer overflow in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel netapp CWE-120
6.7
2022-02-09 CVE-2021-0118 Out-of-bounds Read vulnerability in multiple products
Out-of-bounds read in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
local
low complexity
netapp intel CWE-125
6.7
2022-02-09 CVE-2021-0119 Improper Initialization vulnerability in multiple products
Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.
low complexity
netapp intel CWE-665
6.2
2022-02-09 CVE-2021-0124 Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.
low complexity
netapp intel
6.6