Podatność CVE-2021-33150

Podatność CVE-2021-33150

Publikacja: 2022-03-11

Opis:

Hardware allows activation of test or debug logic at runtime for some Intel(R) Trace Hub instances which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Typ:

NVD-CWE-noinfo

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:P/A:P)

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
4.6/10	6.4/10	3.9/10

Wymagany dostęp	Złożoność ataku	Autoryzacja
Lokalny	Niska	Nie wymagana
Wpływ na poufność	Wpływ na integralność	Wpływ na dostępność
Częściowy	Częściowy	Częściowy

Affected software
Intel -> Core i7-6870hq
Intel -> Celeron 3965u
Intel -> Core i7-7y75
Intel -> Celeron n3050
Intel -> Core i7-8706g
Intel -> Core i3-10105
Intel -> Core i9-11900
Intel -> Core i3-1120g4
Intel -> Pentium gold g5400
Intel -> Core i3-7020u
Intel -> Q270
Intel -> Core i3-8100b
Intel -> Xeon d-2712t
Intel -> Core i5-1030g7
Intel -> Z170
Intel -> Core i5-10505
Intel -> Core i5-1145g7e
Intel -> Core i5-6300u
Intel -> Core i5-6685r
Intel -> Core i5-7600k
Intel -> Core i7-10700e
Intel -> Atom c2750
Intel -> Core i7-1160g7
Intel -> Atom c3830
Intel -> Core i7-6560u
Intel -> C246
Intel -> Core i7-6920hq
Intel -> Celeron 3965y
Intel -> Core i7-8086k
Intel -> Celeron n3150
Intel -> Core i7-8706g
Intel -> Core i3-10105f
Intel -> Core i9-11900f
Intel -> Core i3-1125g4
Intel -> Pentium gold g5400t
Intel -> Core i3-7100
Intel -> Q370
Intel -> Core i3-8100h
Intel -> Xeon d-2733nt
Intel -> Core i5-10310u
Intel -> Z270
Intel -> Core i5-10600
Intel -> Core i5-1145gre
Intel -> Core i5-6350hq
Intel -> Core i5-7200u
Intel -> Core i5-7600t
Intel -> Atom c2308
Intel -> Core i7-10700f
Intel -> Atom c2758
Intel -> Core i7-1165g7
Intel -> Atom c3850
Intel -> Core i7-6567u
Intel -> C621
Intel -> Core i7-6970hq
Intel -> Celeron 4205u
Intel -> Core i7-8500y
Intel -> Celeron n3700
Intel -> Core i7-8709g
Intel -> Core i3-10105t
Intel -> Core i9-11900h
Intel -> Core i3-6006u
Intel -> Pentium gold g5420
Intel -> Core i3-7100e
Intel -> X299
Intel -> Core i3-8100t
Intel -> Xeon d-2738
Intel -> Core i5-10310y
Intel -> Z370
Intel -> Core i5-10600k
Intel -> Core i5-11500
Intel -> Core i5-6360u
Intel -> Core i5-7260u
Intel -> Core i5-7y54
Intel -> Atom c2316
Intel -> Core i7-10700k
Intel -> Atom c3308
Intel -> Core i7-11700
Intel -> Atom c3858
Intel -> Core i7-6600u
Intel -> C621a
Intel -> Core i7-7500u
Intel -> Celeron 4305u
Intel -> Core i7-8550u
Intel -> Celeron n4000
Intel -> Core i7-8750h
Intel -> Core i3-10110u
Intel -> Core i9-11900k
Intel -> Core i3-6098p
Intel -> Pentium gold g5420t
Intel -> Core i3-7100h
Intel -> Xeon d-2123it
Intel -> Core i3-8109u
Intel -> Xeon d-2752nte
Intel -> Core i5-1035g1
Intel -> Z390
Intel -> Core i5-10600kf
Intel -> Core i5-11500h
Intel -> Core i5-6400
Intel -> Core i5-7267u
Intel -> Core i5-7y57

Referencje:

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00609.html

Podatność CVE-2021-33150

Hardware allows activation of test or debug logic at runtime for some Intel(R) Trace Hub instances which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

NVD-CWE-noinfo

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:P/A:P)

4.6/10

6.4/10

3.9/10

Lokalny

Niska

Nie wymagana

Częściowy

Częściowy

Częściowy

Affected software

Referencje: